Xerox 701P46740 manual Network Protocol, Digital Certificates

Page 31

Digital Certificates

SSL/TLS cannot be enabled unless a digital certificate has been installed on the system, using the Add Certificate button. Installing a digital certificate can only be done by someone with administrator privileges.

The administrator selects SSL/TLS from the [Setup] Menu and clicks on the [Add Certificate] button. This invokes the Add Certificate wizard. There are two options regarding digital certificates. One option is “Self-signed certificate”. This is selected when no third party Certificate Authority is being used.

Another option is “Signed Certificate from a Certificate Authority”. In this case, the administrator needs to supply the fully qualified domain name, IP address, organization and country of the Certificate Authority.

If the choice is to use a Certificate Authority, all Certificate information needs to be held in a file and sent to the Certificate Authority. The Authority returns a valid certificate that must be installed on the system.

NOTE: A self-signed certificate is not as secure as a certificate signed by a Certificate Authority. A self-signed certificate is the most convenient way to begin using SSL/TLS and does not require the use of a server functioning as a Certificate Authority or a third party Certificate Authority.

Once the Digital Certificate has been installed, the Enable SSL/ TLS selection becomes available among the [Setup] options. At that time the administrator can select the mode of operation, Normal or Secure, from a drop-down menu.

Network Protocol

 

 

This section addresses Network Protocol, name service changes

 

 

and the changes that occur when security is invoked.

 

 

The table below addresses the list of Network Protocols that are

 

 

used by the Xerox FreeFlow Print Server software or Xerox client

 

 

operations.

 

 

Table 2-7Network Protocols

 

 

 

 

Network

Required

 

Protocol

 

 

 

 

 

 

Samba (SMB)

Network sharing protocol required for Hot Folders and SMB

 

 

filing (Nuvera only).

 

 

 

 

XSun

Required for functionality of Xerox FreeFlow Print Server

 

 

diagnostics software.

 

 

 

 

 

 

Security Guide

27

Page 30 Page 32
Image 31
Page 30 Page 32
Contents Security Guide USA Table of contents Table of contents About this guide ContentsConventions Customer support System supplied security profiles SecurityFTP CD-ROMBSM Enable and disable servicesS70UUCP S72AUTOINSTALLS40LLC2 S47ASPPPS77DMI S15NFS.SERVERS17HCLNFS.DAEMON S76SNMPDXSecurity Guide Security Guide User level changes OS and host information hidden Disabling secure name service databasesMulticast routing disabled Solaris file permissionsSendmail daemon secured Executable stacks disabledRemote CDE login disabled Xerox FreeFlow Print Server router capabilities disabledDisabling LP anonymous printing Remote shell internet serviceEnable-ftp and disable-ftp Security warning bannersLocal users and groups Setting the current and default profilesAccount management Creating user-defined profilesDefault user groups and user accounts Creating user accounts Group authorizationCDS MED CD-ROMAuto-Logon Password security Default Screen/Auto-LogoffHow to Enable/Disable Strong Password Strong PasswordsGUI Logging Audit LogsUser Activity on the System Accessing the Xerox FreeFlow Print Server through ADSDate/Time User Login/Logout Changing individual passwordsIP Filtering Limiting accessSecure Socket Layer Using the Print Server SSL/TLS Security FeatureRemote Workflow Isgw Creating and Using a Self-Signed CertificateSecurity Guide Digital Certificates Network ProtocolWins HttpIPP SnmpNFS Micr modeSecure Print SSLXerox responsibilities Prevent Unauthorized Queue ChangesRoles and responsibilities Queue LockCustomer Responsibilities Security tipsOnline Help for security Virus Scan
Top Page Image Contents