Download  Print this page

Dell C5765dn Installation And Configuration Manual

Smart card reader
Hide thumbs

Advertisement

Dell™ C5765dn

Smart Card Reader

Installation and Configuration Guide
Regulatory Model: C5765dn

Advertisement

Table of Contents
loading

  Also See for Dell C5765dn

  Related Manuals for Dell C5765dn

  Summary of Contents for Dell C5765dn

  • Page 1: Smart Card Reader

    Dell™ C5765dn Smart Card Reader Installation and Configuration Guide Regulatory Model: C5765dn...
  • Page 2 Reproduction of these materials in any manner whatsoever without the written permission of Dell Inc. is strictly forbidden. Trademarks used in this text: Dell and the DELL logo are trademarks of Dell Inc.; Microsoft, Windows, and Windows Server are either trademarks or registered trademarks of Microsoft Corporation in the United States and/or other countries;...
  • Page 3: Table Of Contents

    Compatibility ..........................10 Installation............................11 Hardware Installation ........................12 Initial Settings Procedures Using Dell Printer Configuration Web Tool ....... 13 Preparations for settings on Dell Printer Configuration Web Tool......13 Set SSL/TLS..........................14 Import root CA and intermediate CA certificates for the Smart Card...... 16 View the imported CA certificates ..................
  • Page 4 Appendix ............................47 List of Configuring Procedures ....................48 Smart Card Certificate - Object Identifiers................50 Index ............................... 51...
  • Page 5: Before Using The Smart Card Solution

    1 Before Using the Smart Card Solution This chapter describes the Smart Card (CAC/PIV) solution and the items to be confirmed. • Preface..........................6 • Conventions ........................6 • Feature Overview ......................7 • Supported Card Readers....................8 • Supported Card Types....................9 • Compatibility .......................10...
  • Page 6: Preface

    1 Before Using the Smart Card Solution Preface This guide is intended for use by Dell service providers and network administrators responsible for the management of security appliances and software in the network environment of the organization where the machine is installed, and describes the setup procedures related to the Smart Card solution.
  • Page 7: Feature Overview

    Feature Overview Feature Overview The Dell Smart Card solution brings an advanced level of security to sensitive information. This ensures that only authorized users are able to copy, scan, print, e-mail, and fax information. Once validated, a user is logged into the machine for all features.
  • Page 8: Supported Card Readers

    • Other CCID compliant ISO-7816 card reader may function with the solution, but have not been validated. • For Dell technical support and downloads, visit dell.com/support or contact Dell's ProSupport Help Desk for assistance by calling 1-866-516-3115, or by e-mailing...
  • Page 9: Supported Card Types

    • Gemalto 144K PIV ENDPOINT Note • Other card types may function with the solution, but have not been validated. • For Dell technical support and downloads, visit dell.com/support or contact Dell's ProSupport Help Desk for assistance by calling 1-866-516-3115, or by e-mailing imaging_Solutions_Support_CAC@dell.com.
  • Page 10: Compatibility

    1 Before Using the Smart Card Solution Compatibility This solution is compatible with the following product and configurations: Configuration Software Level Dell C5765dn Controller ROM Ver. 2.205.0 and later Press the <Machine Status> button on the control panel. Select [Software Version] on the [Machine Information] screen.
  • Page 11: Installation

    There are four main installation procedures to follow in sequence. • Hardware Installation ....................12 • Initial Settings Procedures Using Dell Printer Configuration Web Tool ..13 • Initial Settings Procedures Using Control Panel ..........24 • Initial Settings Procedures Using Printer Driver of User Client ......33...
  • Page 12: Hardware Installation

    2 Installation Hardware Installation Connect your card reader to the available USB port.
  • Page 13: Initial Settings Procedures Using Dell Printer Configuration Web Tool

    Set User ID Case Sensitivity......................23 Disable Plug-in Settings........................ 23 Preparations for settings on Dell Printer Configuration Web Tool Prepare a computer supporting the TCP/IP protocol to use Dell Printer Configuration Web Tool. Dell Printer Configuration Web Tool supports the browsers that satisfy "SSL/TLS" conditions.
  • Page 14: Set Ssl/Tls

    2 Installation Set SSL/TLS Installation of the card reader requires HTTP - SSL/TLS communication between a network-connected computer and the machine. Click [Security] on the [Properties] screen. Click [Machine Digital Certificate Management]. Click [Create New Certificate]. Note • If [Create New Self Signed Certificate] is displayed, click it and go to step 5. Select [Self-Signed Certificate] and click [Continue].
  • Page 15 Initial Settings Procedures Using Dell Printer Configuration Web Tool Check the [Enabled] box for [HTTP - SSL / TLS Communication] and [LDAP- SSL / TLS Communication]. Note • For the secure operation, you should check the [Enabled] box for [Verify Remote Server Certificate], and import the CA certificate.
  • Page 16: Import Root Ca And Intermediate Ca Certificates For The Smart Card

    2 Installation Import root CA and intermediate CA certificates for the Smart Card Import root CA and intermediate CA certificates for the Smart Card, Kerberos server, and OCSP responder. Supported CA certificate formats The CA certificate formats that can be used are as follows: •...
  • Page 17: View The Imported Ca Certificates

    • Login Credentials for e-mail send Note • Dell Printer Configuration Web Tool requires the “Login Name” field to be filled if SMTP AUTH is selected. If desired, you may enter an invalid user such as “none” if using the “Remotely Authenticated User”...
  • Page 18: Set S/Mime

    2 Installation Set S/MIME Enable the S/MIME communication to use the e-mail encryption and digital signature features. To use S/MIME on the machine, a certificate issued by another CA is required. Creating a Certificate Signing Request (CSR) Click [Security] on the [Properties] screen. Click [Machine Digital Certificate Management].
  • Page 19: Set Ldap Server

    Initial Settings Procedures Using Dell Printer Configuration Web Tool Note • If [Use this certificate] is not available, then the selected certificate has expired, or is not valid. All certificates in the certification path (chain of trust) must be installed on the machine and be valid.
  • Page 20: Set Kerberos Server

    2 Installation Note • Using system credentials to authenticate to an Active Directory LDAP server, you must use the format “domain\user”. Click [Apply]. Click [Reboot Machine] if prompted. Set Kerberos Server Configure the Kerberos server settings for authentication. Click [Security] on the [Properties] screen. Click [Kerberos Server] under [Remote Autentication Servers].
  • Page 21: Set Certificate Revocation Retrieval

    Initial Settings Procedures Using Dell Printer Configuration Web Tool Set Certificate Revocation Retrieval Perform either of the following steps to configure the Certificate Revocation Retrieval settings. Using CRL method Click [Security] on the [Properties] screen. Click [Certificate Revocation Retrieval settings].
  • Page 22: Set Fips140-2

    2 Installation Using OCSP method Click [Security] on the [Properties] screen. Click [Certificate Revocation Retrieval settings]. Select [High] for [Level of Certificate Verification]. Select [By OCSP] for [Retrieval of Certificate status]. Select [URL As Specified by Administrator] for [Send Query to OCSP Responder With].
  • Page 23: Set User Id Case Sensitivity

    Initial Settings Procedures Using Dell Printer Configuration Web Tool Set User ID Case Sensitivity Click [Security] on the [Properties] screen. Click [User Details Setup]. Select [Non-Case Sensitive] for [User ID for login]. Click [Apply]. Click [Reboot Machine] if prompted. Disable Plug-in Settings Note •...
  • Page 24: Initial Settings Procedures Using Control Panel

    2 Installation Initial Settings Procedures Using Control Panel This section describes the initial settings related to the Smart Card solution, and how to set them on the machine’s control panel. Authentication for entering the System Administration mode ......... 24 Check the system clock ......................25 Set NTP Time Synchronization....................
  • Page 25: Check The System Clock

    Initial Settings Procedures Using Control Panel Check the system clock Select [System Settings] on the [Tools] screen. Select [Common Service Settings]. Select [Machine Clock / Timers]. You can check the time and the date of the system clock. If you need to change the time and the date, refer to the following procedures.
  • Page 26: Set Authentication

    2 Installation Select [NTP Time Synchronization]. Select [Change Settings]. Select [On]. Select [Save]. Select [Time Server Address]. Select [Change Settings]. Enter the IP address of the server in which the network time will be synched with. Select [Save]. Set Authentication Select [Authentication / Security Settings] on the [Tools] screen.
  • Page 27 Initial Settings Procedures Using Control Panel Select [Login Type]. Select [Login to Remote Accounts]. Select [Save]. Select [System Settings] on the [Tools] screen. Select [Connectivity & Network Setup]. Select [Remote Authentication / Directory Service]. Select [Authentication System Setup]. Select [Authentication System]. Select [Change Settings].
  • Page 28: Set Use Of Smart Card

    2 Installation Select [Save]. Select [Close] twice. Set Use of Smart Card Select [Authentication / Security Settings] on the [Tools] screen. Select [Authentication]. Select [User Details Setup]. Select [Use of Smart Card]. Select [Change Settings]. Select [Enabled]. Select [Save]. Select [Smart Card Link Mode]. Select [Change Settings].
  • Page 29: Set Access Control

    Initial Settings Procedures Using Control Panel Select [No Passcode Required]. Select [Save]. Select [Smart Card Certificate Verification]. Select [Change Settings]. Select [Enabled]. Select [Save]. Note • After the Smart Card feature is enabled and the machine reboots, the machine may receive a “121-318”...
  • Page 30 2 Installation Select [Access Control]. Select [Device Access]. Select [Locked]. Select [Save]. Select [Service Access]. Select an item (i.e. [Copy]) then [Change Settings]. Select [Unlocked], [Locked (Show Icon)], or [Locked (Hide Icon)]. Select [Save]. Perform steps 8 to 10 for each item. Select [Close].
  • Page 31 Initial Settings Procedures Using Control Panel Select [Feature Access]. Select an item (i.e. [Color Copying]) then [Change Settings]. Select [Unlocked] or [Locked]. Perform steps 14 and 15 for each item. Select [Close].
  • Page 32: Set Private Charge Print

    2 Installation Set Private Charge Print Configure the settings for using Private Charge Print. The Private Charge Print feature allows you to temporarily store print data for each authentication user ID, and request on the machine’s control panel to print the data. Select [Authentication / Security Settings] on the [Tools] screen.
  • Page 33: Initial Settings Procedures Using Printer Driver Of User Client

    Initial Settings Procedures Using Printer Driver of User Client Initial Settings Procedures Using Printer Driver of User Client This section describes the initial settings related to the Smart Card solution, and how to set them on the printer driver. Note •...
  • Page 34 2 Installation...
  • Page 35: Usage Examples

    3 Usage Examples This chapter describes the operations using the Smart Card to use security features for authenticated users. • User Authentication....................36 • Digital Signature for S/MIME ...................37 • Digital Signature for Scan Files ................38 • Private Charge Print....................39...
  • Page 36: User Authentication

    3 Usage Examples User Authentication You can log in and out of the machine using a Smart Card. Note • The screen display varies depending on the configuration of the machine. Insert a Smart Card into the attached card reader. Enter the PIN (Smart Card Passcode) with the numeric keypad or the keyboard displayed.
  • Page 37: Digital Signature For S/Mime

    Digital Signature for S/MIME Digital Signature for S/MIME You can use the digital signature feature for the E-mail service. Select [E-mail] on the [Home] screen. Select [E-mail Options]. Select [Digital Signature]. Select [Sign With Smart Card Certificate]. Select [Save].
  • Page 38: Digital Signature For Scan Files

    3 Usage Examples Digital Signature for Scan Files You can use the digital signature feature for the Scan to PC service. Select [Scan to PC] on the [Home] screen. Select [File Format]. Select [More]. Select [PDF]. Select [PDF Signature]. Select [Sign With Smart Card Certificate]. Select [Save].
  • Page 39: Private Charge Print

    Private Charge Print Private Charge Print The Private Charge Print feature allows you to temporarily store print data for each authentication user ID, and request on the machine’s control panel to print the data. The following describes how to print or delete a job stored with the Private Charge Print feature.
  • Page 40 3 Usage Examples...
  • Page 41: Problem Solving

    4 Problem Solving This chapter describes solutions to problems that you may come across while using the machine. • Error Messages ......................42 • Technical Support......................45...
  • Page 42: Error Messages

    4 Problem Solving Error Messages The machine has certain built-in diagnostic capabilities to help you identify problems and faults, and displays error messages on the control panel, whenever problems or conflicts occur. The followings are error messages related to the Smart Card solution. UI Message Cause and Remedy Message:...
  • Page 43 Login failed. access to that server requires a Proxy Server, Incorrect authentication system verify that the Proxy Server has been settings. configured properly. On the Dell Printer Configuration Web Tool, select [Properties] then [Connectivity], then [Protocols] and then [Proxy Server]. [Cause] Domain Controller “Chain of Trust”...
  • Page 44 4 Problem Solving UI Message Cause and Remedy Fault Code: 027-708 [Cause] A job is aborted by untrusted certificate of Message: the sender or recipient. Login failed. Untrusted certificate. [Remedy] Ensure that the recipient's certificate is valid and "Chain of Trust" could be established. Make sure that the e-mail address of the recipient and the e-mail address of his/her certificate are the same.
  • Page 45: Technical Support

    Technical Support If a fault cannot be resolved by following the instructions in the error message, identify whether it is related to the card reader device or the Dell device. • For problems with the card reader device Contact the manufacturer for further assistance.
  • Page 46 4 Problem Solving...
  • Page 47: Appendix

    5 Appendix This chapter provides the list of configuring procedures. • List of Configuring Procedures ................42 • Smart Card Certificate - Object Identifiers ............44...
  • Page 48: List Of Configuring Procedures

    [Tools] on the [Home] screen, then follow the remaining navigation steps noted in the table. • To configure the settings using Dell Printer Configuration Web Tool, select the [Properties] tab first and follow the remaining navigation steps noted in the table.
  • Page 49 List of Configuring Procedures Using Dell Printer Configuration Item Using Control Panel Default Web Tool [System Settings]  [Common Set NTP Time Service Settings]  [Machine Synchronization Clock / Timers] [Security]  [Authentication Set Authentication [Authentication / Security Settings]  [Authentication] ...
  • Page 50: Smart Card Certificate - Object Identifiers

    0102 0102 If there is a need to adjust the Smart Card identifiers, then use the Dell Printer Configuration Web Tool ([Properties] > [Security] > [Smart Card Settings] > [Certificate Settings]). By default, all of the screen fields are blank.
  • Page 51: Index

    ..............33 CRL ................21 Private Charge Print..........32 problem solving ............41 Dell Printer Configuration Web Tool ...... 13 digital signature for S/MIME ........37 digital signature for scan files........38 RSA BSAFE..............2 S/MIME .................18 E-mail ................37 Scan to PC ..............38...
  • Page 53 w w w. d e l l . c o m | d e l l . c o m / s u p p o r t KE3038EN0-2...