manualshive.com logo in svg

Xerox Versant 3100 Press, Security Manual

The Fuji Xerox Versant 3100 Press Printer Unit Manual is available for free download from our website. This comprehensive manual provides detailed instructions and troubleshooting tips for operating and maintaining the Versant 3100 Press. Unlock the full potential of this powerful printing device with our user-friendly manual.

Share
Download
background image

Xerox® Security Guide for Entry Production Color Class Products 

March 2019 

  Page  6-24 

 

 

Network Authentication 

When configured for network authentication, user credentials are validated by a remote authentication 
server. 

 

 

Versant®  80/180 Press Versant® 2100/3100 

Press 

Color 800/100 Press®  

 

 

Versant 80 Press, Versant 
180 Press  

Versant 2100 Press, 
Versant 3100 Press 

Color 800/1000 Presses, 
Color 800i/1000i Presses 

Network Authentication Providers 

 

 

 

 

Kerberos (Microsoft Active Directory) 

Supported 

Supported 

Supported 

 

Kerberos (MIT)

 

Supported 

Supported 

Supported 

 

SMB NTLM Versions Supported 

NTLMv2 

NTLMv2 

NTLMv2 

 

LDAP Versions Supported 

Version 3 (including TLS 
1.2) 

Version 3 (including TLS 
1.2) 

Version 3 (including 
TLS 1.2) 

 

Smart Card Authentication 

Two-factor security - Smart Card plus User Name/Password combination, requires optional card reader 
hardware and software plugin. Authentication is handled by a remote server. Supported remote 
authentication methods include Kerberos, SMB and LDAP.  

Smart Card authentication is considered very secure due to the nature of the Smart Card architecture and 
potential levels of encryption of data on the card itself. 

Support for the SIPR network is provided using the XCP Plug-in architecture and a Smart Card 
authentication solution created by 90meter under contract for Xerox.  

Details regarding 90meter can be found online here

http://www.90meter.com/

  

Other Smart Card authentication solutions are offered including support for CAC/PIV and .NET 
compatible cards leveraging XCP Plug-ins. 

 

 

 

Versant®  80/180 Press Versant® 2100/3100 

Press 

Color 800/100 Press®  

 

 

Versant 80 Press, Versant 
180 Press  

Versant 2100 Press, 
Versant 3100 Press 

Color 800/1000 Presses, 
Color 800i/1000i Presses 

Smart Cards 

 

 

 

 

Common Access Card (CAC) 

Supported 

Supported 

Supported 

 

PIV / PIV II  

Supported 

Supported 

Supported 

 

Net (Gemalto .Net v1, Gemalto .Net v2) 

Supported 

Supported 

Supported 

 

Gemalto MD

 

(Not Currently 
Supported) 

(Not Currently 
Supported) 

(Not Currently 
Supported) 

 

 

Convenience Authentication 

Convenience authentication offloads authentication to a third-party solution which may offer more or less 
security than native security implementations.  Users swipe a pre-programmed identification card or key 
fob to access the device. 

For example, employees may be issued key fobs for access to facilities.  Convenience mode may be 
configured to allow an employee to authenticate using their fob or require the fob in a multi-factor manor.  
The level of security provided is dependent upon the chosen implementation. 

Some examples of third party convenience authentication providers include: 

Summary of Contents for Versant 3100 Press

Page 1: ...Xerox Security Guide Entry Production Color Presses Versant 2100 3100 Color Digital Press Versant 80 180 Color Digital Press ColorPress Production Press Versant 2100 Press Versant 3100 Press Versant 8...

Page 2: ...sion 1 0 February 2019 Copyright protection claimed includes all forms and matters of copyrightable material and information now allowed by statutory or judicial law or hereinafter granted including w...

Page 3: ...CE VALIDATION 3 17 ADDITIONAL NETWORK SECURITY CONTROLS 3 17 4 DEVICE SECURITY BIOS FIRMWARE OS RUNTIME AND OPERATIONAL SECURITY CONTROLS 4 19 FAIL SECURE VS FAIL SAFE 4 19 PRE BOOT SECURITY 4 20 BOOT...

Page 4: ...uction Color Class Products March 2019 Page 1 2 COLORPRESS 800 1000 800I 1000I 7 35 APPENDIX B SECURITY EVENTS 7 39 XEROX VERSANT 80 180 SECURITY EVENTS 7 39 XEROX VERSANT 2100 3100 SECURITY EVENTS 7...

Page 5: ...ument is Xerox field personnel and customers concerned with IT security Disclaimer The information in this document is accurate to the best knowledge of the authors and is provided without warranty of...

Page 6: ...leges can manage the product configuration settings User permissions are configurable through Role Based Access Control RBAC policies described in section 6 Identification Authentication and Authoriza...

Page 7: ...rt supports the following Walk up users may insert a USB thumb drive to store or retrieve documents for scanning and or printing Versant cannot print from USB not an option from a FAT formatted USB de...

Page 8: ...upported via optional touch screen user interface or optional dedicated NFC USB dongle Information shared over NFC includes IPv4 address IPv6 address MAC address UUID a unique identifier on the NFC cl...

Page 9: ...odule TPM The TPM is compliant with ISO IEC 11889 the international standard for a secure cryptoprocessor dedicated to secure cryptographic keys The TPM is used to securely hold the product storage en...

Page 10: ...encryption when submitting Secure Print jobs to enabled products Simply check the box to Enable Encryption when adding the Passcode to the print job Outbound User Data Scanning to Network Repository...

Page 11: ...DD See Appendix A Product Security Profiles Models with magnetic HDD See Appendix A Product Security Profiles Print Submission IPPS TLS Supported Supported Supported HTTPS TLS Supported Supported Supp...

Page 12: ...e device acting as a client to external network services Inbound Listening Services Out Bound Network Client Print Services LPR IPP Raw IP etc Management Services SNMP Web interface WebServices etc In...

Page 13: ...encryption and authentication at the packet level ColorPress and Versant products support IPSec for both IPv4 and IPv6 protocols Versant 80 180 Press Versant 2100 3100 Press Color 800 100 Press Versan...

Page 14: ...ts support the latest version TLS 1 2 Versant 80 180 Press Versant 2100 3100 Press Color 800 100 Press Versant 80 Press Versant 180 Press Versant 2100 Press Versant 3100 Press Color 800 1000 Presses C...

Page 15: ...to the product using a Smart Card For protocols such as HTTPS the printer is the server and must prove its identity to the client Web browser For protocols such as 802 1X the printer is the client and...

Page 16: ...does not meet this requirement a message appears The message alerts the user that the certificate they are attempting to upload does not meet the key length requirement Versant 80 180 Press Versant 2...

Page 17: ...0 Presses Color 800i 1000i Presses Email S MIME Versions v3 Not Applicable Not Applicable Digest SHA1 SHA256 SHA384 SHA512 Not Applicable Not Applicable Encryption 3DES AES128 AES192 AES256 Not Applic...

Page 18: ...milies such as Versant enabling Cisco ISE to automatically detect and profile new Xerox products from the day they are released Customers who use Cisco ISE find that including Xerox products in their...

Page 19: ...ints contextually Connectivity of Versant and ColorPress devices can be fully managed contextually by Cisco TrustSec TrustSec uses Security Group Tags SGT that are associated with an endpoint s user d...

Page 20: ...bled IPsec is evaluated first Up to 25 addresses can be enabled for IPv4 and an additional 25 for IPv6 Addresses include IP and subnet allowing individual system or subnets to be enabled A system admi...

Page 21: ...mware is verified against a whitelist using cryptographic hashing Event Monitoring Logging The Audit Log feature records security related events Continuous Operational Security Firmware and Diagnostic...

Page 22: ...tion is used to protect the system user data and configuration including security settings from being retrieved or modified Each device uses its own unique key that is securely generated Encryption is...

Page 23: ...l Service Details Xerox products are serviced by a tool referred to as the Portable Workstation PWS Only Xerox authorized service technicians are granted access to the PWS Customer documents or files...

Page 24: ...oducts March 2019 Page 5 22 Configuration Security Policy Management Solutions Xerox Device Manager and Xerox CentreWare Web available as a free download centrally manage Xerox Devices For details ple...

Page 25: ...ColorPress and Versant devices support the following authentication modes Local Authentication Network Authentication Smart Card Authentication CAC PIV SIPR Net Convenience Authentication Local Authen...

Page 26: ...sing the XCP Plug in architecture and a Smart Card authentication solution created by 90meter under contract for Xerox Details regarding 90meter can be found online here http www 90meter com Other Sma...

Page 27: ...support various workflows as well as security needs User permissions include security related permissions and non security related workflow permissions e g walkup user options copy scan paper selecti...

Page 28: ...erabilities in Xerox software and hardware It can be downloaded from this page http www xerox com information security information security articles whitepapers enus html Additional Resources Below ar...

Page 29: ...Xerox Security Guide for Entry Production Color Class Products March 2019 Page 7 27 Appendix A Product Security Profiles This appendix describes specific details of each Versant and ColorPress product...

Page 30: ...letely by a system administrator Front Panel Optional USB2 0 Type A port s Users may insert a USB thumb drive to print from or store scanned files to Physical security of this information is the respo...

Page 31: ...Integrated Circuit soldered to circuit board HDD Magnetic Hard Disk Drive SSD Solid State Disk SD Card Secure Digital Card Controller Non Volatile Memory Size Type Use User Modifiable How to Clear Vo...

Page 32: ...ogram and work area N SDRAM is erased when machine is powered off Yes 64MB SDRAM ESS PWBA Temporary storage of program and work area N SDRAM is erased when machine is powered off Yes 1Gbit SDRAM page...

Page 33: ...0 Type A USB target connector used for printing Xxxx Not possible on Versant or CP1000 Note This port can be disabled completely by a system administrator Front Panel Optional USB2 0 Type A port s Us...

Page 34: ...rd HDD Magnetic Hard Disk Drive SSD Solid State Disk SD Card Secure Digital Card Controller Non Volatile Memory Size Type Use User Modifiable How to Clear Volatile 8MB Flash MCU PWBA Permanent storage...

Page 35: ...SDRAM MCU PWBA Temporary storage of variables N SRAM is erased when machine is powered off Yes 4Gbit DRAM SYSTEM MEMORY DIMM Temporary storage of program and work area N SDRAM is erased when machine i...

Page 36: ...M ESS PWBA Temporary storage of program and work area N SDRAM is erased when machine is powered off Yes 1Gbit SDRAM page memory Temporary storage of variables N SRAM is erased when machine is powered...

Page 37: ...print on those printer from USB Note This port can be disabled completely by a system administrator Front Panel Optional USB2 0 Type A port s Users may insert a USB thumb drive to print from or store...

Page 38: ...hardware ID system settings realtime control parameters print job control state performance log information usage counters No Content can be initialized to factory default values Yes Additional Inform...

Page 39: ...ues No Additional Information The controller operating system memory manager allocates memory dynamically between OS running processes and temporary data which includes jobs in process When a job is c...

Page 40: ...ta Contains machine specific data hardware ID system settings real time control parameters print job control state performance log information usage counters Contains machine specific data System Admi...

Page 41: ...to KO authentication failures Detection of unauthorized access 0x0301 Change of Audit Policy Enabling of audit log management function Disabling of audit log management function 0x0401 Job Completion...

Page 42: ...ess deletion Address change Uploading from remote client Whole address book Downloading to remote client Whole address book Deletion of all addresses Downloading to remote client Whole address book 0x...

Page 43: ...ement function 0x0401 Job Completion Print Copy Scan Fax Mailbox Report Flow Service Jobs other than the above 0x0501 Change view of Device Setting Change of date time setting local time User registra...

Page 44: ...ion Color Class Products March 2019 Page 7 42 0x0701 Change Restoration of Device Configuration Replacement of important parts Detection of HDD replacement Change of ROM version 0x0801 Communication R...

Page 45: ...Xerox Security Guide for Entry Production Color Class Products March 2019 Page 7 43 ColorPress Security Events ColorPress utilizes Windows Event Logging which is outside the scope of this document...

Reviews:

No comments

Related manuals for Versant 3100 Press

WANHAO CGR Series User Manual preview
CGR Series
Brand: WANHAO Pages: 29
Samsung CJX-1050W Quick Install Manual preview
CJX-1050W
Brand: Samsung Pages: 2
TallyGenicom 6300 Series Maintenance Manual preview
6300 Series
Brand: TallyGenicom Pages: 175
Macherey-Nagel NANOCOLOR UV/VIS II User Manual preview
NANOCOLOR UV/VIS II
Brand: Macherey-Nagel Pages: 6
Canon IR 2420 Easy Operation Manual preview
IR 2420
Brand: Canon Pages: 21
Canon imageRUNNER ADVANCE 4251 Spesification preview
imageRUNNER ADVANCE 4251
Brand: Canon Pages: 12
oti OCT Service Manual preview
OCT
Brand: oti Pages: 33
Roland VersaUV LEJ-640 Service Notes preview
VersaUV LEJ-640
Brand: Roland Pages: 321
AnyCubic Photon Mono User Manual preview
Photon Mono
Brand: AnyCubic Pages: 253
Lexmark C6160 User Manual preview
C6160
Brand: Lexmark Pages: 142
Rice Lake SST4 Technical Manual preview
SST4
Brand: Rice Lake Pages: 86
Xerox Adaptive CMYK+ Kit Reference Manual preview
Adaptive CMYK+ Kit
Brand: Xerox Pages: 48
Airlink101 AMPS240W User Manual preview
AMPS240W
Brand: Airlink101 Pages: 36
Ricoh 2020D - Aficio B/W Laser User Manual preview
2020D - Aficio B/W Laser
Brand: Ricoh Pages: 116
Canon PIXMA MX712 Guía De Configuración preview
PIXMA MX712
Brand: Canon Pages: 22
Canon PIXMA MX512 Getting Started Manual preview
PIXMA MX512
Brand: Canon Pages: 4
Canon PIXMA MP970 Setup Instructions preview
PIXMA MP970
Brand: Canon Pages: 2
Canon PIXMA MX432 Getting Started Manual preview
PIXMA MX432
Brand: Canon Pages: 4

Brands by name

Popular brands

Load more brands