Xerox
®
D95/D110/D125 Copier/Printer Security Function Supplementary Guide
5
Service Representative Restricted
Operation
Specifies whether the Service Representative has full access to the security features of the
machine, including the ability to change System Administrator settings.
For the D95/D110/D125 Copier/Printer, select [On] and then set [Maintenance Passcode] to
restrict the Service Representative from entering the System Administration mode.
Important:
If the System Administrator’s user ID and the passcode are lost when [Service Rep. Restricted
Operation] is set to [On], neither you nor the Xerox representative will be able to change any
setting in the System Administration mode.
For Optimal Performance of the Security
Features
The manager (of the organization that the machine is used for) needs to follow the
instructions below:
• The manager needs to assign appropriate people as system and machine administrators,
and manage and train them properly.
• The manager and system administrators need to train users about the security policies
and procedures of their organization.
• The machine needs to be placed in a secure or monitored area where the machine is
protected from unmanaged physical access.
• If the network where the machine is installed is to be connected to external networks,
configure the network properly to block any unauthorized external access.
• The users must set a user ID and a passcode on [Accounting Configuration] of printer
driver.
• Users and administrators need to set passcodes and an encryption key according to the
following rules for the client PC login and the machine’s setup:
- Do not use easily guessed character strings for passcodes.
- A passcode needs to contain both numeric and alphabetic characters.
• Users and administrators need to manage and operate the machine so that their user IDs
and passcodes may not be disclosed to another person.
• Administrators need to set the account policy in the remote authentication server as
follows:
- Set password policy to [9 or more characters].
- Set account lockout policy to [5 times].
• For secure operation, all of the remote trusted IT products that communicate with the
machine shall implement the communication protocol in accordance with industry
standard practice with respect to RFC/other standard compliance (SSL/TLS, IPSec,
SNMPv3, S/MIME) and shall work as advertised.
To Next Page
Loading...
Need help?
General