XEROX WorkCentre 3550 Information Assurance Disclosure Paper
3.3.System Accounts
3.3.1.Printing [Multifunction models only]
The device may be set up to connect to a print queue maintained on a remote print server. The login name and password are sent to the print server in clear text. IPSec should be used to secure this channel.
3.3.2. Network Scanning [Multifunction models only]
Network Scanning may require the device to log into a server. The instances where the device logs into a server are detailed in the following table. Users may also need to authenticate for scanning. This authentication is detailed in subsequent sections.
3.3.2.1.Device log on
Scanning feature |
| Device behavior |
Scan to Network |
| The device logs in to the scan repository as set up by the SA via CWIS. |
Scan to |
| The device logs into an SMTP Server as set up by the SA via CWIS. It will |
|
| |
|
| only log into the Server when a user attempts to use the |
|
| feature. At the time the LDAP server must be accessed, the device will |
|
| log into the LDAP server. |
|
| The device uses simple authentication on the SMTP server. A network |
|
| username and password must be assigned to the device. The device |
|
| logs in as a normal user, with read only privileges. User credentials are |
|
| not used for this authentication step, and are never transmitted over the |
|
| network. |
| Table 8 Device Log On for Scanning Features | |
Please note that when the device logs into any server the device username and password are sent over the network in clear text unless SSL has been enabled or IPSec has been configured to encrypt the traffic.
3.4. Diagnostics
To access onboard diagnostics from the local user interface, Xerox service representatives must enter a unique
| 24 |
Ver. 1.3, March 2011 | Page 24 of 32 |
