Xerox 701P46740 manual Account management, Creating user-defined profiles, Local users and groups

Page 18

Creating user-defined profiles

To create a customized profile, the administrator can copy and edit any security profile according to the needs of the customer environment. This new user profile can be selected, edited, set as current, set as default, or deleted.

Setting the current and default profiles

The administrator can select any profile and set it as the Current Profile. This Current Profile persists throughout Xerox FreeFlow Print Server restarts and system reboot until it is changed by the administrator. Similarly, the administrator can specify a security profile as a Default Profile.

Specifying a profile as default does not enable the profile, but indicates that it will be the profile setting across Xerox FreeFlow Print Server upgrades. By clicking the Restore Default Profile, the Default profile can be selected as the Current profile (this operation will take several minutes to complete).

Account management

Any interaction between a user and the Xerox FreeFlow Print Server is associated with a user account and is done via a logon session, which is the basis for granting access.

Xerox FreeFlow Print Server user accounts are defined either locally at the device or remotely at a trusted network location like ADS. The local user account is composed of a logon user name and an assigned user group. A user account can be a member of only one user group. It is the user group that is associated with a security profile that defines the privileges of the group.

Default user accounts are provided to allow easy transition from legacy Xerox FreeFlow Print Server versions. For customers that do not require authentication, the Xerox FreeFlow Print Server can be configured to have the system automatically log on using a default user account.

Local users and groups

Local user accounts are constructed based on the Solaris operating system model, with its limitations and restrictions, using the [Users & Groups] selection on the Xerox FreeFlow Print Server interface.

Each local user account has an associated user name

14

Security Guide

Page 17 Page 19
Image 18
Page 17 Page 19
Contents Security Guide USA Table of contents Table of contents Contents About this guideConventions Customer support Security System supplied security profilesCD-ROM FTPEnable and disable services BSMS47ASPPP S72AUTOINSTALLS40LLC2 S70UUCPS76SNMPDX S15NFS.SERVERS17HCLNFS.DAEMON S77DMISecurity Guide Security Guide User level changes Solaris file permissions Disabling secure name service databasesMulticast routing disabled OS and host information hiddenXerox FreeFlow Print Server router capabilities disabled Executable stacks disabledRemote CDE login disabled Sendmail daemon securedSecurity warning banners Remote shell internet serviceEnable-ftp and disable-ftp Disabling LP anonymous printingCreating user-defined profiles Setting the current and default profilesAccount management Local users and groupsDefault user groups and user accounts Group authorization Creating user accountsMED CD-ROM CDSAuto-Logon Default Screen/Auto-Logoff Password securityStrong Passwords How to Enable/Disable Strong PasswordAudit Logs GUI LoggingChanging individual passwords Accessing the Xerox FreeFlow Print Server through ADSDate/Time User Login/Logout User Activity on the SystemLimiting access IP FilteringUsing the Print Server SSL/TLS Security Feature Secure Socket LayerRemote Workflow Creating and Using a Self-Signed Certificate IsgwSecurity Guide Network Protocol Digital CertificatesSnmp HttpIPP WinsSSL Micr modeSecure Print NFSQueue Lock Prevent Unauthorized Queue ChangesRoles and responsibilities Xerox responsibilitiesSecurity tips Customer ResponsibilitiesVirus Scan Online Help for security
Top Page Image Contents