Xerox 5745 Ports 137, 138, 139, Netbios, Ports 161, 162, Snmp, Port 389, Ldap, Port 396, Netware

Page 20

XEROX WorkCentre 5735/5740/5745/5755/5765/5775/5790 Information Assurance Disclosure Paper

2.8.2.7.Ports 137, 138, 139, NETBIOS

For print jobs, these ports support the submission of files for printing as well as support Network Authentication through SMB. Port 137 is the standard NetBIOS Name Service port, which is used primarily for WINS. Port 138 supports the CIFS browsing protocol. Port 139 is the standard NetBIOS Session port, which is used for printing. Ports 137, 138 and 139 may be configured in the Properties tab of the device’s web page.

For Network Scanning features, ports 138 and 139 are used for both outbound (i.e. exporting scanned images and associated data) and inbound functionality (i.e. retrieving Scan Templates). In both instances, these ports are only open when the files are being stored to the server or templates are being retrieved from the Template Pool. For these features, SMB protocol is used.

2.8.2.8.Ports 161, 162, SNMP

These ports support the SNMPv1, SNMPv2c, and SNMPv3 protocols. Please note that SNMP v1 does not have any password or community string control. SNMPv2 relies on a community string to keep unwanted people from changing values or browsing parts of the MIB. This community string is transmitted on the network in clear text so anyone sniffing the network can see the password. Xerox strongly recommends that the customer change the community string upon product installation. SNMP is configurable, and may be explicitly enabled or disabled in the Properties tab of the device’s web pages.

SNMP traffic may be secured if an IPSec tunnel has been established between the agent (the device) and the manager (i.e. the user’s PC).

The device supports SNMPv3, which is an encrypted version of the SNMP protocol that uses a shared secret. Secure Sockets Layer must be enabled before configuring the shared secret needed for SNMPv3.

2.8.2.9.Port 389, LDAP

This is the standard LDAP port used for address book queries in the Scan to Email feature.

2.8.2.10. Port 396, Netware

This configurable port is used when Novell Netware is enabled to run over IP.

2.8.2.11. Port 427, SLP

When activated, this port is used for service discovery and advertisement. The device will advertise itself as a printer and also listen for SLP queries using this port. It is not configurable. This port is explicitly enabled / disabled in the Properties tab of the device’s web pages.

2.8.2.12. Port 443, SSL

This is the default port for Secure Sockets Layer communication. This port can be configured via the device’s web pages. SSL must be enabled before setting up either SNMPv3 or IPSec or before retrieving the audit log (see Sec. 4.1). SSL must also be enabled in order to use any of the Web Services (Scan Template Management, Automatic Meter Reads, or Network Scanning Validation Service).

SSL should be enabled so that the device can be securely administered from the web UI. When scanning, SSL can be used to secure the filing channel to a remote repository.

SSL uses X.509 certificates to establish trust between two ends of a communication channel. When storing scanned images to a remote repository using an https: connection, the device must verify the certificate provided by the remote repository. A Trusted Certificate Authority certificate should be uploaded to the device in this case.

To securely administer the device, the user’s browser must be able to verify the certificate supplied by the device. A certificate signed by a well-known Certificate Authority (CA) can be downloaded to the device, or the device can generate a self-signed certificate. In the first instance, the device creates a Certificate Signing Request (CSR) that can be downloaded and forwarded to the well-known CA for signing. The signed device certificate is then uploaded to the device. Alternatively, the device will generate a self-signed certificate. In this case, the generic Xerox root CA certificate must be downloaded from the device and installed in the certificate store of the user’s browser.

The device supports only server authentication.

Ver. 2.00, March 2011

Page 20 of 50

Page 19 Page 21
Image 20
Page 19 Page 21
Contents Xerox WorkCentre Page Target Audience Device DescriptionSecurity Aspects of Selected Features Disclaimer PurposeTarget Audience Security-relevant Subsystems Physical PartitioningSystem functional block diagram Security Functions allocated to SubsystemsController PurposeMemory Components Security Functions allocated to SubsystemsController memory components Hard Disk DrivesController External Connections External ConnectionsUSB Ports Fax Module ScannerHardware USB PortsGraphical User Interface GUI Scanner memory componentsSystem Software Structure Control and Data InterfacesOpen-source components OS Layer in the ControllerController Operating System layer components Network Protocols IPv4 Network Protocol StackLogical Access IPSecPorts Port 25, SmtpPort 53, DNS Port 68, DhcpPort 80, Http ServerPort 88, Kerberos Port 110, POP-3 ClientPorts 137, 138, 139, Netbios Ports 161, 162, SnmpPort 389, Ldap Port 396, NetwareIP Filtering System Access Authentication ModelAuthentication and Authorization schematic Login and Authentication Methods System Administrator Login All product configurationsUser authentication Kerberos Authentication Solaris or Windows 2000/WindowsDomain Controller Network Scanning Multifunction models only System AccountsPrinting Multifunction models only Diagnostics Service All product configurationsAlternate Boot via Serial Port Tty ModeAccess Accessible Data Summary Security Aspects of Selected Features Audit LogIfax Event Event description Entry Data SSL System startup Device name Device serial number Ifax Event Event description Entry Data SSL Xerox Standard Accounting Image Overwrite Automatic Meter ReadsEncrypted Partitions Overwrite Timing AlgorithmUser Behavior Responses to Known Vulnerabilities Appendix a Abbreviations Non-Volatile Random Access Memory Portable Service WorkstationPrinted Wire Board Assembly System AdministratorSnmp version / Network Transport support WorkCentre Appendix B Supported MIB ObjectsTerm Definition RFC 1213 MIB-II for TCP/IP group WorkCentre RFC 1759 Printer MIB Group WorkCentreRFC 1514 Host Resources MIB group WorkCentre Additional Capabilities / Application Support WorkCentre Appendix C -Standards Controller HardwareController Software RFC/StandardPrinting Description Languages Appendix E References
Related manuals
Manual 1 pages 6.71 Kb

5790, 5755, 5775, 5735, 5740 specifications

The Xerox 5790, 5760, and 5765 are part of Xerox's well-known line of multifunction printers (MFPs), designed to meet the needs of businesses looking for efficient, high-volume printing, copying, and scanning solutions. These models provide a blend of advanced technology and user-friendly features, making them ideal for offices that demand speed and reliability.

The Xerox 5790 is a standout model in this series, offering exceptional printing speeds of up to 90 pages per minute. It features a robust paper handling system capable of accommodating various media sizes and types, including both standard and custom formats. This model integrates advanced imaging technology, providing high-quality output with sharp text and vibrant colors, thanks to its high resolution of up to 1200 x 1200 dpi.

The 5760 and 5765 models, while slightly lower in terms of speed – with the 5765 reaching up to 65 pages per minute – still maintain impressive performance levels suitable for medium to large-sized businesses. Both devices utilize Xerox's innovative EA toner technology, which delivers fine details and smooth gradients, making them particularly effective for graphics-intensive documents.

One of the key features across these models is their user-friendly touchscreen interface, which simplifies operation and allows for seamless workflow management. Users can easily access scanning, printing, and copying functions, with options to customize workflows according to specific job requirements. Additionally, these MFPs offer advanced scanning capabilities, such as double-sided scanning and scan-to-email features, enhancing productivity.

Connectivity is another highlight of the Xerox 5790, 5760, and 5765. They support a variety of networking options, including Ethernet and Wi-Fi, making it easy to integrate them into existing office networks. Furthermore, they are equipped with mobile printing options, allowing users to print directly from their smartphones and tablets, enhancing flexibility and convenience.

In addition to their powerful performance, these models also come equipped with various security features, such as secure print, user authentication, and data encryption, ensuring sensitive information remains protected. With their strong emphasis on sustainability, Xerox has designed these printers to be energy-efficient and equipped with features aimed at reducing paper waste, such as duplex printing.

In conclusion, the Xerox 5790, 5760, and 5765 multifunction printers combine speed, quality, and advanced technology, making them excellent choices for businesses looking to enhance productivity and workflow. Their range of features and capabilities ensures they can meet the demands of various office environments, all while maintaining a commitment to sustainability and security.
Top Page Image Contents