Konica Minolta bizhub 223 bizhub 223/283/363/423 PKI Security Operations User - Page 9

1.4 Precautions for Operation Control 1 1.4 Precautions for Operation Control This machine and the data handled by this machine should be used in an office environment that meets the following conditions. The machine must be controlled for its operation under the following conditions to protect the data that should be protected. Roles and Requirements of the Administrator The Administrator should take full responsibility for controlling the machine, thereby ensuring that no improper operations are performed. - A person who is capable of taking full responsibility for controlling the machine should be appointed as the Administrator to make sure that no improper operations are performed. - When using an SMTP server (mail server) or an DNS server, each server should be appropriately man- aged by the Administrator and should be periodically checked to confirm that settings have not been changed without permission. Password Usage Requirements The Administrator must control the Administrator Password and Encryption Key appropriately so that they may not be leaked. These passwords should not be ones that can be easily guessed. - Make absolutely sure that only the Administrator knows the Administrator Password and Encryption Key. - The Administrator should set an 8-to-16-digit Administrator Password. (Selectable from among a total of 93 characters) - The Administrator must change the Administrator Password and Encryption Key at regular intervals. - The Administrator should make sure that any number that can easily be guessed from birthdays, em- ployee identification numbers, and the like is not set for the Administrator Password and Encryption Key. - If the Administrator Password has been changed by the Service Engineer, the Administrator should change the Administrator Password as soon as possible. Operation and control of the machine The Administrator of the machine should perform the following operation control. - The Administrator of the machine should log off from the Administrator Settings whenever the operation in the Administrator Settings is completed. The Administrator of the machine should also make sure that each individual user logs off from the User Authentication mode after the operation in the User Authentication mode is completed, including operation of the Encrypted document. - The Administrator of the machine should set the Encryption Key according to the environment, in which this machine is used. - The Administrator should enable Prohibited Functions When Authentication Error and control the operation of the machine for use in [Mode 2]. - The Administrator should disable PageScope Web Connection and control the operation of the machine for use in the disable state. - To disable PageScope Web Connection, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [HTTP Server Settings] on the MFP control panel, and set "PSWC Settings" to "OFF." - The Administrator should disable OpenAPI and control the operation of the machine for use in the disable state. - To disable OpenAPI, press the [Utility/Counter] key, and then [Administrator Settings] - [System Connection] - [OpenAPI Settings] on the MFP control panel, and set "Access Setting" to "Restrict." - The Administrator should disable the TCP Socket and control the operation of the machine for use in the disable state. - To disable the TCP Socket, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [Forward] - [TCP Socket Settings] on the MFP control panel, and set "TCP Socket" to "OFF." - The Administrator should disable the FTP Server and control the operation of the machine for use in the disable state. - To disable the FTP Server, press the [Utility/Counter] key, and then [Administrator Settings] - [Network Settings] - [FTP Settings] on the MFP control panel, and set "FTP Server Settings" to "OFF." bizhub 423/363/283/223 1-6