Xerox WorkCentre 7425 Supplementary Manual
  1. Manuals
  2. Brands
  3. Xerox Manuals
  4. All in One Printer
  5. WORKCENTRE 7425
  6. Supplementary manual

Xerox WorkCentre 7425 Supplementary Manual

Security function
Hide thumbs Also See for WorkCentre 7425:
Table of Contents

Advertisement

Quick Links

See also: Reference Manual , System Administrator Manual
WorkCentre 7425/7428/7435
Security Function Supplementary
Guide
Version 1.0, August 2009

Advertisement

Table of Contents
loading

Related Manuals for Xerox WorkCentre 7425

Summary of Contents for Xerox WorkCentre 7425

  • Page 1 WorkCentre 7425/7428/7435 Security Function Supplementary Guide Version 1.0, August 2009...

  • Page 2: Table Of Contents

    Table of Contents Before Using the Security Function ..............5 Preface ...............................5 Security Features...........................6 Settings for the Secure Operation ....................6 Data Restoration...........................7 Starting use of the data encryption feature and changing the settings ....7 Use of the Overwrite Hard Disk......................8 Service Representative Restricted Operation ................8 For Optimal Performance of the Security features ..............9 Confirm the Machine ROM version and the System Clock ..........
  • Page 3 Authenticated Users (with System Administrator Privileges)......22 Authenticated Users (with No System Administrator Privileges) ...... 22 Unauthenticated Users......................22 Local Machine Authentication (Login to Local Accounts)..........22 Functions Controlled by Authentication ..............23 Local Access........................ 23 Remote Access ......................23 Authentication for Folder.......................
  • Page 4 Folder Setup..........................41 Import the files........................41 Change User Passcode by System Administrator (Using CentreWare Internet Services) 42 Problem Solving....................... 43 Fault Clearance Procedure......................43 Fault Codes ............................44 Appendix........................48 Copyright 2009 by Fuji Xerox Co., Ltd. All rights reserved.

  • Page 5: Before Using The Security Function

    WorkCentre 7425/7428/7435 System Administrator Guide :Version 1.0, January 2009 WorkCentre 7425/7428/7435 User Guide :Version 1.0, January 2009 WorkCentre 7425/7428/7435 is supported by the following ROM version. Controller+PS ROM Ver. 1.180.9 IOT ROM Ver. 40.10.0 IIT ROM Ver. 22.13.1 ADF ROM Ver.

  • Page 6: Security Features

    Security Features WorkCentre 7425/7428/7435 has the following security features: Hard Disk Data Overwrite • Hard Disk Data Encryption • User Authentication • System Administrator’s Security Management • Customer Engineer Operation Restriction • Security Audit Log • Internal Network data protection •...

  • Page 7: Data Restoration

    Data Restoration The enciphered data cannot be restored in the following conditions. When a trouble occurs in the hard disk. • When you have forgotten the encryption key. • When you have forgotten the System Administrator ID and a passcode when making [Service Rep. Restricted •...

  • Page 8: Use Of The Overwrite Hard Disk

    Specifies whether the Service Representative has full access to the security features of the machine, including the ability to change System Administrator settings. For the WorkCentre 7425/7428/7435, select [On] and then set [Maintenance Passcode] to restrict the Service Representative from entering the System Administration mode.

  • Page 9: For Optimal Performance Of The Security Features

    For Optimal Performance of the Security features The manager (of the organization that the machine is used for) needs to follow the instructions below: Assign appropriate persons as system and machine administrators, and manage and train them properly. • If the network where the machine is installed is to be connected to external networks, configure the network •...

  • Page 10: Confirm The Machine Rom Version And The System Clock

    Confirm the Machine ROM version and the System Clock Before initial settings, the System Administrator (Machine Administrator) has to check the machine ROM version and the system clock of the machine. How to check by Control Panel Press the <Machine Status> button on the control panel. Select [Machine information] on the touch screen.

  • Page 11: Initial Settings Procedures Using Control Panel

    Initial Settings Procedures Using Control Panel This chapter describes the initial settings related to Security Features, and how to set them on the machine’s control panel. Authentication for entering the System Administration mode Press the <Log In/Out> button on the control panel. Enter "admin"...

  • Page 12: Set Service Rep. Restricted Operation

    Set Service Rep. Restricted Operation Select [System Settings] on the [Tools] screen. Select [Common Service Settings]. Select [Other Settings]. On the [Other Settings] screen, select [Service Rep. Restricted Operation]. Select [Change Settings]. Select [On]. Select [Maintenance Passcode]. Select [Keyboard], and enter a new passcode of 9 or more characters in [New Passcode]. Select [Save].

  • Page 13: Set Authentication

    Set Authentication Select [Authentication/Security Settings] on the [Tools] screen. Select [Authentication]. Select [Login Type]. On the [Login Type] screen, select [Login to Local Accounts]. Select [Save] Set Access Control Select [Authentication/Security Settings] on the [Tools] screen. Select [Authentication]. Select [Access Control]. Select [Device Access].

  • Page 14: Set User Passcode Minimum Length

    Set User Passcode Minimum Length Select [Authentication/Security Settings] on the [Tools] screen. Select [Authentication]. Select [Passcode Policy]. On the [Passcode Policy] screen, select [Minimum Passcode Length]. Select [Change Settings]. On the [Minimum Passcode Length] screen, select [Set]. With [ ] and [ ], set [9].

  • Page 15: Initial Settings Procedures Using Centreware Internet Services

    Initial Settings Procedures Using CentreWare Internet Services This section describes the initial settings related to Security Features, and how to set them on CentreWare Internet Services. Preparations for settings on the CentreWare Internet Services Prepare a computer supporting the TCP/IP protocol to use CentreWare Internet Services. CentreWare Internet Services supports the browsers satisfied "SSL/TLS"...

  • Page 16: Set Ssl/Tsl

    Set SSL/TSL Click [+] on the [Security] folder on the [Properties] screen. Click [Machine Digital Certificate Management]. Click the [Create New Self Signed Certificate] button. Set the size of the Public Key as necessary. Set Issuer as necessary. Click the [Apply] button. Click [SSL/TLS Settings].

  • Page 17: Set Ipsec

    Set IPSec Note: Before setting [Digital Signature] for [IKE Authentication Method], you will have to import an IPSec certificate according to same procedure as "Configuring Machine Certificates" (3.4). Click [+] on the left of the [Security] folder on the [Properties] screen. Click [IPSec].

  • Page 18: Set Snmpv3

    Set SNMPv3 Click [+] on the left of the [Connectivity] folder on the [Properties] screen. Click [+] on the left of the [Protocols] folder. Click [SNMP Configuration]. Check the [Enable SNMPv3 Protocol] box. Uncheck the [Enable SNMP v1/v2c Protocols] box. Click the [Apply] button.

  • Page 19: Set S/Mime

    Set S/MIME Note: To use E-mail with this machine, E-mail function has to be enabled and configured as stated in the System • Administrator Guide’s "Scan to E-mail". Before S/MIME setting, you will have to Import an S/MIME certificate according to same procedure as •...

  • Page 20: Regular Review By Audit Log

    Regular Review by Audit Log This section describes the setting and importing method for the Audit Log from the System Administrator client via CentreWare Internet Services. The Audit Log, regularly reviewed by the Security Administrator, often with the aid of third party analyzing tools, helps to assess attempted security breaches, identify actual breaches, and prevent future breaches.

  • Page 21: Authentication For The Secure Operation

    Authentication for the Secure Operation The machine has a unique Authentication feature that restricts the ability to use functions. This chapter contains information for System Administrators and general users on the features used to change the settings and on the setting procedures. Overview of Authentication This section is an overview of the Authentication feature used with the machine.

  • Page 22: Authenticated Users (With System Administrator Privileges)

    Authenticated Users (with System Administrator Privileges) These are users who are assigned the System Administrator privileges. When a restricted service is used, this type of user must enter a user ID on the authentication screen. This type of user has the same privileges as the Machine Administrator for machine operations, except: Operating Folder and job flow sheets •...

  • Page 23: Functions Controlled By Authentication

    Functions Controlled by Authentication The following explains the functions that are restricted by the Authentication feature. Restriction depends on which of the following two ways the machine is used. Local Access • Remote Access • For more information on the restrictions to Folder and job flow sheets using the Authentication feature, refer to Authentication for Job Flow Sheets and Folder on 5.2.
  • Page 24 Print Printing is limited to print jobs sent from a computer. To use the Accounting feature, use the print driver to set account information such as user ID and passcode. If verification using account information fails for a print job, the print data will be either saved in the machine or deleted depending on the Charge Print settings.

  • Page 25: Authentication For Folder

    Authentication for Folder The following explains the restrictions for job flow sheets and Folder when the Authentication feature is enabled. NOTE: When a user account is deleted, the Folder and job flow sheets associated with the account are also deleted. Any files stored in the Folder will also be deleted. NOTE: When the Authentication feature is used with a remote account server, the user information stored in the machine may be temporarily deleted to restrict user access.

  • Page 26: Operations Available For Folder

    Operations available for Folder. The following table shows the relationship with the Folder for each user type when the Authentication feature is enabled. Folder Operation System Administrator and Authenticated Users Shared by Machine Personal (owner) Personal Administrator (other) Create Display Delete Change Settings Display File...
  • Page 27 Machine Administrator Folder Operation Shared by Machine Personal Administrator Create Display Delete Change Settings Display File Delete File Store File*1 Print File*1 Job Flow Display Sheet Link Auto Run Manual Run O: Operation available X: Operation not available *1: When files are stored or retrieved using a Folder, authentication is not applicable to the following operations. •...

  • Page 28: Operation Using Control Panel

    Operation Using Control Panel This chapter contains information on the operation of using control panel to use security features for System Administrator and authenticated users. User Authentication Before the use of all services and settings, user needs ID and Passcode Authentication. Press the <Log In / Out>...

  • Page 29: User Id

    User ID Allows you to enter a User ID using the screen keyboard. You can enter up to 32 alphanumeric characters including spaces as a User ID. User Name Allows you to enter a user name using the screen keyboard. You can enter up to 32 alphanumeric characters including spaces as a user name.

  • Page 30: Change User Passcode By General User

    Change User Passcode by General User This feature allows Authenticated Users (the procedure as described "User Authentication " (6.1)) to change the registered passcode. Authenticate by the procedure as described [User Authentication ](6.1). Select [User Details Setup]. Select [Change Passcode] . Enter the Current Passcode and select [Next].

  • Page 31: Folder / Stored File Settings

    Folder / Stored File Settings This section describes the features that allow a System Administrator to configure various settings for Folder created for saving confidential incoming fax files or scanned files. Folder Service Settings This feature allows you to specify whether to discard files once received from a client and whether received Internet Fax files can be forwarded.

  • Page 32: Stored File Settings

    Stored File Settings This feature allows you to select whether files stored in a Folder are automatically deleted. You can set how long files are kept and time of the deletion. You can also select whether individual files are deleted or not. Select [Stored File Settings] under [System Settings].

  • Page 33: Create Folder

    Create Folder This feature allows users to create Folder for saving confidential incoming FAX files or scanned files. FAX files in Folder can be printed out at a convenient time and scanned files in Folder can be imported to computers. Select [Create Folder] on the [Setup Menu] screen.

  • Page 34: Send From Folder

    Send from Folder This section describes the Folder features that allow you to check, print, or delete files in the private Folder displayed on the [Send from Folder] screen. Some Folders, however, may require you to enter a passcode, depending on the operation you attempt. Private Folder created by other users are inactive and inaccessible to you.

  • Page 35: Private Charge Print

    Private Charge Print The Private Charge Print feature temporarily stores files per user ID, until a user logs in and manually prints them from the machine’s control panel. This feature only displays files of a logged-in user, and thus provides security and privacy to files stored in the machine.

  • Page 36: Operation Using Centreware Internet Services

    Operation Using CentreWare Internet Services This chapter contains information on the operation of using CentreWare Internet Services, to use security features for System Administrator and authenticated users. The CentreWare Internet Services program uses the embedded Web User Interface which enables communication between a networked computer and the machine via HTTP.

  • Page 37: Accessing Centreware Internet Services

    Accessing CentreWare Internet Services Follow the steps below to access CentreWare Internet Services. At a client workstation on the network, launch an internet browser. In the URL field, enter “http://” followed by the IP address or Internet address of the machine. Then press the <Enter>...

  • Page 38: Print

    Print This page allows you to specify printing and paper parameters, enter accounting information, and select the delivery method for your print job. Follow the steps below to select the features available on the [Print] tab. Click [Print] on the Main Panel of the home page. The [Job Submission] page is displayed.

  • Page 39: Scan (Folder Operation)

    Scan (Folder Operation) This page allows you to configure Folder. Follow the steps below to select the features available on the [Scan] tab. Click [Scan] on the Main Panel of the home page. Select the Folder hot link. The [Folder] page is displayed. Folder icons Clicking the icon of a registered Folder displays [Folder: List of Files] page for the Folder.

  • Page 40: Folder: List Of Files

    Folder: List of Files The following table shows the setting items available on the [Folder: List of Files] page. Folder Number Displays the Folder number of the selected Folder. Folder Name Displays the name of the selected Folder. File Number Displays the file numbers of the files stored in the Folder.

  • Page 41: Folder Setup

    Folder Setup The following table shows the setting items available on the [Folder Setup] page. Folder Folder Number Displays the number of the selected Folder. Folder Name Displays the name of the Folder. Folder Passcode Displays the passcode to the Folder. To change the passcode, enter it with up to 20 characters.

  • Page 42: Change User Passcode By System Administrator (Using Centreware Internet Services)

    Change User Passcode by System Administrator (Using CentreWare Internet Services) Open your Web browser and enter the TCP/IP address of the machine in the Address or Location field Press the <Enter> key. Enter System Administrator’s ID and passcode if prompted. Click the [Properties] tab.

  • Page 43: Problem Solving

    Problem Solving This chapter describes solutions to problems that you may come across while using the machine and CentreWare Internet Services. The machine has certain built-in diagnostic capabilities to help identify problems and faults, and displays error messages on the control panel and web browser, whenever problems or conflicts occur. Fault Clearance Procedure If a fault or problem occurs, there are several ways in which you can identify the type of fault.

  • Page 44: Fault Codes

    Received a message from the SNTP server saying that it was not synchronized with the standard time source. Check the SNTP server settings. 016-502 An error occurred during writing data. Contact the Xerox Welcome Center. 016-503 Unable to resolve the name of the SMTP server when e-mail was transmitted.
  • Page 45 The machine failed to transfer data via FTP using the Scan to PC service because an internal error occurred after connection to the FTP server. Try again. If the problem persists, contact the Xerox Welcome Center. 016-594 The machine failed to transfer data via FTP using the Scan to PC service because a 016-595 network error occurred.
  • Page 46 The direct fax function is prohibited. Check with the System Administrator whether 016-770 the function is enabled. If enabled, contact the Xerox Welcome Center. 016-771 Unable to retrieve the scan data repository address. Confirm the DNS connection. Alternatively, set the scan data repository domain name to the DNS.
  • Page 47 018-505 One of the following problems has occurred. If the error occurred during SMB authentication: • The user ID or passcode you entered was not correct, and thus the authentication failed. • The time setting of the SMB server and that of the machine do not match(Windows Server 2003 only).If the error occurred during SMB file transfer using Scan to PC: •...

  • Page 48: Appendix

    Appendix List of Setting Procedures Item Using Control Panel Using CentreWare Internet Services Check the Clock [System Settings] [Common Service Settings] [Machine Clock/Timers]. [Authentication/Security] [Authentication] [Passcode Policy] [Passcode Entry from Control Use Passcode Entry from Control Panel Panel] [Authentication/Security Settings] [System [Security] [System Administrator Administrator Settings] [System Administrator’s Settings]...
  • Page 49 [System Settings] [Connectivity & Network [Security] [IPSec] Setup] [Security Settings] [IPSec Settings] Set IPSec [Connectivity] [Protocols] [SNMP Configuration] Set SNMPv3 [System Settings] [Connectivity & Network [Security] [SSL/TLS Set S/MIME Setup] [Security Settings] [S/MIME Settings] Settings] [S/MIME Communication] [Security] [Audit Log]. Set Audit Log, Import the Audit LogFile...

This manual is also suitable for:

Workcentre 7428Workcentre 7435

Table of Contents