Xerox 701P46740 manual Strong Passwords, How to Enable/Disable Strong Password

Page 24

NOTE: Please be aware that Xerox Customer Support Personnel must have access to the new root password for service and support. It is the customer's responsibility to ensure that the root and system administrator passwords are available for them.

Strong Passwords

The Xerox FreeFlow Print Server provides additional security for users required to adhere to strict security guidelines. It provides a means in which a strong password policy can be enforced.

Strong Passwords can be Enabled and Disabled (default setting) via the Password Policies window.

Strong passwords must consist of ALL of the following

A minimum of 8 characters in length

Contain at least one capital letter

Contain at least one number

Contain at least one special character {!, @, #, $, %, ^, &, *}, including open and close parentheses { ( ) }, hyphen{ - }, underscore{ _ }, and period{ . }.

NOTE: The strong password requirements cannot be modified. A strong password cannot be set for root or any other Solaris user accounts that are not created by the Xerox FreeFlow Print Server.

NOTE: Remote Network Server: If running NIS+ name service, strong passwords would be enforced via the NIS + server. This policy can be set by using the -a <# of allowed attempts> argument with rpc.nispasswdd. For example, to limit users to no more than four attempts (the default is 3), you would type: rpc.nispasswd -a 4.

How to Enable/Disable Strong Password

From the Setup menu select [Users and Groups]

From the Policies drop down menu select [Password]

Enable/Disable Strong Password from the Password Policies window. The default setting is “Disable”.

Login Attempts Allowed

The Xerox FreeFlow Print Server has provided a means to lockout users after reaching the maximum number of consecutive attempts. Once this is done, the user will need to apply (reset) a security policy and reboot the system.

The number of failed attempts and enable/disable is configurable via the Password Policy screen. When enabled, login attempts can be set from 1-6 attempts before the user is locked out. This

20

Security Guide

Image 24
Contents Security Guide USA Table of contents Table of contents Contents About this guideConventions Customer support Security System supplied security profilesCD-ROM FTPEnable and disable services BSMS72AUTOINSTALL S40LLC2S47ASPPP S70UUCPS15NFS.SERVER S17HCLNFS.DAEMONS76SNMPDX S77DMISecurity Guide Security Guide User level changes Disabling secure name service databases Multicast routing disabledSolaris file permissions OS and host information hiddenExecutable stacks disabled Remote CDE login disabledXerox FreeFlow Print Server router capabilities disabled Sendmail daemon securedRemote shell internet service Enable-ftp and disable-ftpSecurity warning banners Disabling LP anonymous printingSetting the current and default profiles Account managementCreating user-defined profiles Local users and groupsDefault user groups and user accounts Group authorization Creating user accountsMED CD-ROM CDSAuto-Logon Default Screen/Auto-Logoff Password securityStrong Passwords How to Enable/Disable Strong PasswordAudit Logs GUI LoggingAccessing the Xerox FreeFlow Print Server through ADS Date/Time User Login/LogoutChanging individual passwords User Activity on the SystemLimiting access IP FilteringUsing the Print Server SSL/TLS Security Feature Secure Socket LayerRemote Workflow Creating and Using a Self-Signed Certificate IsgwSecurity Guide Network Protocol Digital CertificatesHttp IPPSnmp WinsMicr mode Secure PrintSSL NFSPrevent Unauthorized Queue Changes Roles and responsibilitiesQueue Lock Xerox responsibilitiesSecurity tips Customer ResponsibilitiesVirus Scan Online Help for security