Konica Minolta bizhub C35 bizhub C35 Security Operations User Guide - Page 7

bizhub C35

1-4

1.2

Security Functions

1

1.2

Security Functions

Setting the Enhanced Security Mode to [ON] will validate the security function of this machine. For details of

the settings of different security functions to be changed by turning [ON] the Enhanced Security Mode, see

page 2-5.

Setting the Enhanced Security Mode to [ON] will enhance the authentication function. Access control is then

provided through password authentication for any access to the Admin Settings, User Authentication mode,

and Secured Job file. Access is thereby granted only to the authenticated user.

A password that can be set must meet the requirements of the Password Rules. The machine does not ac-

cept setting of an easily decipherable password. For details of the Password Rules, see page 1-8.

If a wrong password has been entered three cumulative times during password authentication, the machine

determines that it is unauthorized access through Prohibited Functions When Authentication Error, prohibit-

ing any further entry of the password. By prohibiting the password entry operation, the machine prevents un-

authorized use or removal of data, thereby ensuring secured used of the machine. This function is not,

however, governed by authentication by the ISO15408.

When the machine is to be discarded, or use of a leased machine is terminated at the end of the leasing con-

tract, the data erase function overwrites and erases all data stored in all spaces of the HDD and SSD. The

function also resets all passwords saved in the NVRAM to factory settings, preventing leak of data. For details

of items to be cleared by data erase function, see page 1-10.

Check Count Clear Conditions

The following are the conditions for clearing or resetting the check count of the number of wrong entries at

the time of authentication.

NOTICE

The check count is cleared or reset by restarting the machine. If there is any user who frequently turns ON

and OFF the machine, warn him or her of the fact or take necessary steps.

<Admin Settings>

-

Authentication of Admin Settings is successful.

-

The machine is restarted

<User Authentication Mode>

-

User Authentication mode is successful.

-


<Secured Job>

-

Authentication of Secured Job is successful.

-


<SNMP Password (auth-password, priv-password)>

-

Authentication of SNMP is successful.

-


Section	Page
Contents	2
1 Security	5
1.1 Introduction	5
Compliance with the ISO15408 Standard	5
Operating Precautions	5
INSTALLATION CHECKLIST	6
1.2 Security Functions	7
Check Count Clear Conditions	7
1.3 Data to be Protected	8
1.4 Precautions for Operation Control	9
Roles and Requirements of the Administrator	9
Password Usage Requirements	9
Network Connection Requirements for the Machine	9
User information control system control requirements	9
Security function operation setting operating requirements	10
Operation and control of the machine	10
Machine Maintenance Control	10
Operating conditions for the IC card and IC card reader	10
IC card owner requirements	10
1.5 Miscellaneous	11
Password Rules	11
Precautions for Use of Various Types of Applications	11
Encrypting communications	12
IPP printing	12
Items of Data Cleared by Data Erase Function	13
HDD Format	14
Upgrading of the firmware	14
2 Administrator Operations	16
2.1 Accessing the Admin Settings	16
Accessing the Admin Settings	16
2.2 Enhancing the Security Function	19
Setting the Enhanced Security Mode	21
2.3 Setting the Authentication Method	23
Setting the Authentication Method	23
2.4 ID & Print Setting Function	26
Setting the ID & Print	26
2.5 Auto Reset Function	27
Setting the Auto Reset function	27
2.6 User Setting Function	30
Making user setting	30
2.7 IC card information Setting Function	32
Registering information from the control panel	32
2.8 Changing the Administrator Password	34
Changing the Administrator Password	34
2.9 Erasing data when the machine is to be discarded or use of a leased machine is terminated	36
2.9.1 Setting the Overwrite All Data	36
2.9.2 Setting the SSD Low-level Format	39
2.9.3 Setting the Restore All	40
2.10 SSL Setting Function	41
2.10.1 Device Certificate Setting	41
2.10.2 SSL Setting	43
2.10.3 Removing a Certificate	44
2.11 SNMP Setting Function	46
2.11.1 Changing the auth-password and priv-password	46
2.11.2 SNMP access authentication function	47
2.11.3 SNMP v3 setting function	47
2.11.4 SNMP network setting function	47
2.12 Accessing the Scan to HDD file	48
Accessing the image file	48
2.13 TCP/IP Setting Function	50
2.13.1 Setting the IP Address	50
2.13.2 Registering the DNS Server	50
2.14 NetWare Setting Function	51
Making the NetWare Setting	51
2.15 SMB Setting Function	52
Making the SMB Setting	52
2.16 AppleTalk Setting Function	53
Making the AppleTalk Setting	53
2.17 E-Mail Setting Function	54
Setting the SMTP Server (E-Mail Server)	54
3 User Operations	56
3.1 User Authentication Function	56
3.1.1 Performing user authentication (authentication through entry of the user name and user password)	57
3.1.2 Performing user authentication (identification through the IC card)	61
3.1.3 Performing user authentication (authentication through the IC card + user password)	62
3.2 ID & Print Function	66
3.2.1 Registering ID & Print files	66
3.2.2 Accessing the ID & Print file	68
3.3 Change Password Function	70
Performing Change Password	70
3.4 Secured Job Function	72
3.4.1 Registering Secured Job files	72
3.4.2 Accessing the Secured Job file	74
3.5 Scan to HDD Function	77
3.5.1 Registering image files	77
3.5.2 Accessing the image file	79
4 Application Software	83
4.1 PageScope Data Administrator	83
Precautions during backup or restore	83
4.1.1 Accessing from PageScope Data Administrator	83
4.1.2 Setting the user authentication method	85
4.1.3 Changing the authentication mode	87
4.1.4 Making the user settings	90
4.1.5 Setting the IC card information	91
4.2 TWAIN driver	93

Konica Minolta bizhub C35 bizhub C35 Security Operations User Guide - Page 7

Security Functions

Page 7 highlights