Password Feedback Area Protection; Password Registration; Table 27: Unlocking Administrators For Each User Role - Ricoh Aficio MP C2800 Manual

(1) Auto Lockout Release
If the user fails to authenticate after making the number of attempts specified to initiate
lockout, and the lockout time has elapsed, then lockout will be released u pon the first
successful identification and authentication by the locked-out user. The machine
administrator specifies the lockout time between 1 and 9999 minutes. If the machine
administrator sets the lockout time to indefinite, lockout release will be pe rformed only
by manual lockout release. In this case, lockout release must be performed by manual
lockout release.
(2) Manual Lockout Release
The unlocking administrators (specified for each user role, as shown in Table 27), have
permission to release Lockout using the Web Service Function. If an administrator (any
role) or a supervisor is locked out, as a special Lockout release operation, restarting the
TOE releases Lockout.

Table 27: Unlocking administrators for each user role

User roles (locked out users)
General users
Administrators (all administrator roles)
Supervisor
By the above, FIA_AFL.1 (Authentication failure handling) and FMT_SMF.1 (Specification of Management
Functions) are satisfied.
7.1.2.3

Password Feedback Area Protection

The TOE displays a string of masking characters (*: asterisks or ?: bullets) in place of each letter of a
password entered from the Operation Panel or the Web browser of a client computer by a general user,
administrator, or supervisor.
From the above, FIA_UAU.7 (Protected authentication feedback) is satisfied.
7.1.2.4

Password Registration

The TOE provides a function for registering and changing the passwords of general users, administrators,
and supervisor from the Operation Panel or the Web Service Function. This function uses a string of masking
characters described in (1).
This function checks if the password to be registered or changed meets conditions (2) and (3). If it does, the
password is registered. If it does not, the password is not registered and an error message appears.
(1) Usable characters and its types:
Upper-case letters: [A -Z] (26 letters)
Lower-case letters: [a -z] (26 letters)
Numbers: [0-9] (10 digits)
Symbols: SP (space) ! " # $ % & ' ( ) * + , - . / : ; < = > ? @ [ \ ] ^ _ ` { | } ~ (33 symbols)
Copyright (c) 2009,2010 RICOH COMPANY, LTD. All Rights Reserved.
Unlocking administrators
User administrator
Supervisor
Machine administrator
Page 67 of 80