manualshive.com logo in svg

Xerox WorkCentre 5845, Installation And Operation Manual, Page: 4 / 14

Share
Download
Xerox WorkCentre 5845 Installation And Operation Manual Download Page 4

 

 

3

3.

 

Authorization

i.

 

Only local authorization is allowed in the evaluated configuration. Establish local authorization at the device by 
following the “Configuring Local Authorization Settings” instructions in Section 4 of the SAG. Note that local 
user accounts on the device should be set up first before user permissions are set up. 

Set  up  user  roles  and

 

user  permissions  to  access  device  services  and  features  based  on  the  roles  users  are 

assigned  by  following  the  instructions  for  “User  Permissions”  under  “Configuring  Authentication  Settings”  in 
Section 4 of the SAG. 

ii.

 

Set the permission for all Non-Logged In Users Roles (see “User Roles” in Section 4 of the SAG) to be 

Not 

Allowed

Not Allowed & Hidden

 or 

Never

, as appropriate, for the following: (1) all print permission categories 

(by following the “Editing Print Permissions for the Non-Logged In Users Role” under “Configuring Authorization 
Settings” in Section 4 of the SAG) and (2) all services and tools (by following the “Editing Services and Tools 
Permissions for the Non-Logged In Users Role” under “Configuring Authorization Settings” in Section 4 of the 
SAG). Also set the  

4.

 

Personalization

: Enable personalization by following the instructions for “Specifying the Method the Printer Uses to 

Acquire Email Address of Users” under “Configuring Smart Card Authentication Settings” under “Configuring 
Authentication Settings” in Section 4 of the SAG. Configure personalization by following the instructions for 
“Configuring User Mappings” under “LDAP” in Section 3 of the SAG. 

5.

 

Immediate  Image Overwrite

: Follow the instructions under ‘Enabling Immediate Image Overwrite at the Control 

Panel’ or ‘Enabling Immediate Image Overwrite’ in Section 4 of the SAG to enable Immediate Image Overwrite from 
the Control Panel or the Web UI, respectively. 

Both Immediate Image Overwrite and On Demand Image Overwrite are enabled by default at the factory when the 
device is first delivered. 

6.

 

Security  Certificates

:  Install  a  digital  certificate  on  the  device  before  enabling  SSL  by  following  the  appropriate 

instructions  under  “Security  Certificates”  in  in  Section  4  of  the  SAG  for  installing  the  any  one  of  the  digital 
certificates (Device Certificate, CA Certificate or Trusted Certificate) the device supports.  

Note  that  a  Xerox  self-signed    certificate  is  installed  by  default  on  the  device.  If  a  CA  certificate    is  desired  a 
Certificate Signing Request (CSR) will have to be sent to a Certificate Authority to obtain the CA Certificate before it 
can  be  installed  on  the  device;  follow  the  instructions  for  “Creating  a  Certificate  Signing  Request”  under  “Security 
Certificates” in in Section 4 of the SAG to create the CSR. 

7.

 

Secure Sockets Layer (SSL)

i.

 

Follow the instructions under ‘Enabling DND/DDNS Settings the Control Panel’ or ‘”DNS” (under “Configuring IP 
Settings in CentreWare Internet Services”) in Section 3 of the SAG for entering the host and domain names, to 
assign the machine a valid,  fully qualified machine name and domain from the Control Panel  or the  Web UI, 
respectively (required for SSL to work properly). 

ii.

 

If  a  self-signed  certificate  is  to  be  used  download  the  generic  Xerox  root  CA  certificate  from  the  device  by 
following  the  instructions  for  saving  the  certificate  file  under  “Viewing,  Saving  or  Deleting  a  Certificate”  in 
Section  4  of  the  SAG  and  then  installing  the  saved  certificate  in  the  certificate  store  of  the  System 
Administrator's browser. 

iii.

 

Enable HTTPS by following the instructions for “Enabling HTTPS (SSL)” under “Secure HTTP (SSL)” in Section 4 
of the SAG. Set the ‘Force Traffic over SSL’ option to be 

Yes (all HTTP requests will be switched to HTTPS)

8.

 

FIPS 140-2 Mode

:  Encryption of  transmitted and stored  data by the  device must meet the FIPS 140-2 Standard. 

Enable the use of encryption in “FIPS 140 mode” and check for compliance of certificates stored on the device to 
the FIPS 140-2 Standard by follow the instructions for “Enabling FIPS 140 Mode and Checking for Compliance” in 
Section 4 of the SAG.  

9.

 

Data Encryption

: Enable data encryption by following the instructions under “Enabling Encryption of Stored Data” 

in  Section  4  of  the  SAG;  data  encryption  is  enabled  by  default  at  the  factory  when  the  device  is  first  delivered. 
Before  enabling  disk  encryption  make  sure  that  the  WorkCentre  5845/5855/5865/5875/5890,  WorkCentre 
7220/7225, WorkCentre 7830/7835/7845/7855 or ColorQube 9301/9302/9303 is not in diagnostics mode and that 
there are no active or pending scan jobs.  

                                                                            

6

Xerox

 Smart Card Installation and Operation Guide (CAC/PIV/.Net/Access Client & Rijkspas) Xerox

 WorkCentre 5845/5855/5865/5875/5890  

Xerox

 WorkCentre 7220/7225  Xerox

 WorkCentre 7830/7835/7845/7855  Xerox

 ColorQube

TM

 8700/8900  Xerox

 ColorQube

TM

 

9301/9302/9303, Version 1.1, April 2013.

  

Summary of Contents for WorkCentre 5845

Page 1: ...Version 1 3 May 6 2013 Secure Installation and Operation of Your WorkCentre 5845 5855 5865 5875 5890 WorkCentre 7220 7225 WorkCentre 7830 7835 7845 7855 and ColorQube 9301 9302 9303...

Page 2: ...he information provided here is consistent with the security functional claims made in the Security Target 3 Upon completion of the evaluation the Security Target will be available from the Common Cri...

Page 3: ...assword Reset security feature so it is not used To disable this feature perform the following At the Web UI select the Properties tab Select the following entries from the Properties Content menu Sec...

Page 4: ...self signed certificate is installed by default on the device If a CA certificate is desired a Certificate Signing Request CSR will have to be sent to a Certificate Authority to obtain the CA Certific...

Page 5: ...ure Print Settings in Section 5 of the SAG Make sure the Release Policies for Secure Print Jobs Requiring Passcode When the User is Already Logged In option is set to Prompt for Passcode Before Releas...

Page 6: ...nd SFTP Filing Settings under FTP SFTP Filing in Section 3 of the SAG c The following protocols services and functions are considered part of the evaluated configuration and should be enabled when nee...

Page 7: ...ction 8 of the SAG Makes sure the Delete on Print option is selected for Received Documents The Local Polling option and embedded fax mailboxes should not be set up or used at any time Remote Polling...

Page 8: ...disable when complete Software upgrades can be enabled disabled by following the instructions for Enabling Upgrades under Updating the Printer Software in Section 10 of the SAG II Secure Acceptance Se...

Page 9: ...nd Image Overwrite should be run This error message will persist until an On Demand Image overwrite is initiated by the System Administrator In the case that the copy controller is reset at the same t...

Page 10: ...can job will be deleted and not transferred to the remote SSL repository In this case the job status reported in the Completed Job Log for this job will read Job could not be sent as a connection to t...

Page 11: ...nter to report the suspected problem and initiate the SPAR Software Problem Action Request 10 process for addressing problems found by Xerox customers d Depending upon the configuration of the device...

Page 12: ...can to email LAN Fax or Embedded Fax job fails The error message informs the user to notify the System Administrator that an On Demand Overwrite should be run and persists on the Control Panel screen...

Page 13: ...ler LDAP server and other kerberized services as they are developed Is accessible by typing http IP Address diagnostics kerberosSettings php Download DLM PCL Forms Allows the System Administrator to d...

Page 14: ...nters to each Web User Interface screen organized by Web UI tab Is accessible by selecting the Site Map button in the upper right hand corner of every Web User Interface page Exit from Sleep Mode Auto...

Reviews:

No comments