Xerox 701P46740 manual Security, System supplied security profiles

Page 7

Security

This section describes the Xerox FreeFlow® Print Server system- supplied security profiles. It outlines the characteristics of each profile and indicates how each can be customized to create user- defined profiles. The enhanced security features in the Xerox FreeFlow Print Server protect the system against unauthorized access and modification.

This section also addresses the options available to the administrator in setting up and managing user accounts.

Finally this section offers general guidelines to security-related procedures that can be implemented to improve the security of the Xerox FreeFlow Print Server controller and the Solaris OS.

System supplied security profiles

The four system-supplied profiles are: default operating system only, low, medium, and high. The following table describes the characteristics of each security level and the configurable settings that restrict access to various devices and operating system services.

NOTE: Customers have the option to setup and use custom profiles. Custom profiles are copied from one of the system- supplied profiles and provides the ability to enable/disable any of the default settings. Multiple custom profiles can be saved on the system.

Table 2-1Security Profiles

Profile

Characteristics

User

Compatibility

Comments

 

 

 

 

 

Default

All ports are open.

Physically

Close to

Anonymous FTP is

Operati

Walkup users can reprint

closed

DocuSP 2.1

read-only and

ng

anything.

environments.

and 3.1.

restricted.

System

Full workspace menu is

 

 

 

Only

available.

 

Similar to

The Solaris

 

Auto logon is enabled.

 

DocuSP 3.X

desktop is removed

 

 

 

“Medium”.

from all settings

 

 

 

 

except none.

 

 

 

 

 

Security Guide

3

Page 6 Page 8
Image 7
Page 6 Page 8
Contents Security Guide USA Table of contents Table of contents About this guide ContentsConventions Customer support System supplied security profiles SecurityFTP CD-ROMBSM Enable and disable servicesS70UUCP S72AUTOINSTALLS40LLC2 S47ASPPPS77DMI S15NFS.SERVERS17HCLNFS.DAEMON S76SNMPDXSecurity Guide Security Guide User level changes OS and host information hidden Disabling secure name service databasesMulticast routing disabled Solaris file permissionsSendmail daemon secured Executable stacks disabledRemote CDE login disabled Xerox FreeFlow Print Server router capabilities disabledDisabling LP anonymous printing Remote shell internet serviceEnable-ftp and disable-ftp Security warning bannersLocal users and groups Setting the current and default profilesAccount management Creating user-defined profilesDefault user groups and user accounts Creating user accounts Group authorizationCDS MED CD-ROMAuto-Logon Password security Default Screen/Auto-LogoffHow to Enable/Disable Strong Password Strong PasswordsGUI Logging Audit LogsUser Activity on the System Accessing the Xerox FreeFlow Print Server through ADSDate/Time User Login/Logout Changing individual passwordsIP Filtering Limiting accessSecure Socket Layer Using the Print Server SSL/TLS Security FeatureRemote Workflow Isgw Creating and Using a Self-Signed CertificateSecurity Guide Digital Certificates Network ProtocolWins HttpIPP SnmpNFS Micr modeSecure Print SSLXerox responsibilities Prevent Unauthorized Queue ChangesRoles and responsibilities Queue LockCustomer Responsibilities Security tipsOnline Help for security Virus Scan
Top Page Image Contents