Install and Configure a Scan Server
Applies To: Windows Server 2008 R2
Scan servers are used to communicate with scanners that support Web Services on Devices (WSD), run scan processes, route scanned documents, and log scan-related events. On a computer running Windows Server 2008 R2, you first install the Print and Document Services role and then install the Distributed Scan Server role service in Server Manager. The Distributed Scan Server role service also installs the Scan Management snap-in.
After a scan server is installed, you can use the Scan Server Configuration Wizard to modify existing server settings.
To install and configure a scan server
Open Server Manager.
In the left pane, click Roles, and do the following:
If the Print and Document Services role is not installed, in the right pane, click Add Roles. Follow the instructions in the Add Roles Wizard to specify the domain user service account, local temporary folder, SMTP mail server for e-mailing scanned documents, server authentication certificate, and user and group security permissions.
If the Print and Document Services role is already installed, in the left pane, click Roles, and then click Print and Document Services. Follow the instructions in the Add Roles Services Wizard to specify the domain user service account, local temporary folder, SMTP mail server for e-mailing scanned documents, server authentication certificate, and user and group security permissions.
To open Server Manager, click Start, point to Administrative Tools, and click Server Manager.
You can also perform this task by using Windows PowerShell. For more information about using Windows PowerShell to add or remove roles in Server Manager, see http://go.microsoft.com/fwlink/?LinkID=166427.
You can also perform this task by using the command line. To do this click Start, right-click Command Prompt, click Run as administrator, and then type the following respectively to add or remove this role:
ServerManagerCmd.exe –install Print-Scan-Server
ServerManagerCmd.exe –remove Print-Scan-Server
The service account is created with more permissions than are required to run scan processes. Write and List permissions are needed in order to run scan processes. The Read permission is needed to read scan processes stored in Active Directory Domain Services. You should consider removing unneeded permissions from the service account.
You should select a certificate issued by a certification authority (CA) that is trusted by clients connecting to the scan server. The subject name of the certificate must match the fully qualified domain name (FQDN) of the server.