Lexmark X658DE Administration Guide

Lexmark X658DE - Mfp Laser 55PPM P/s/c/f Duplex Adf Manual

Get Lexmark X658DE - Mfp Laser 55PPM P/s/c/f Duplex Adf PDF manuals and user guides
UPC - 734646093767
View all Lexmark X658DE manuals
Add to My Manuals
Save this manual to your list of manuals

Lexmark X658DE manual content summary:

  • Lexmark X658DE | Administration Guide - Page 1
    Embedded Web Server - Security Administrator's Guide November 2012 3077716-001 www.lexmark.com
  • Lexmark X658DE | Administration Guide - Page 2
  • Lexmark X658DE | Administration Guide - Page 3
    settings 23 Installing a Certificate Authority certificate on the device 23 Configuring the device for certificate information 24 Creating a new certificate...25 Viewing, downloading, and deleting a certificate 25 Setting certificate defaults...26 Configuring confidential printing ...26 Enabling
  • Lexmark X658DE | Administration Guide - Page 4
    4 Enabling the security reset jumper...33 Securing the hard disk and other installed memory 34 Statement of Volatility...34 Erasing volatile memory ...35 Erasing non‑volatile memory...35 Completely erasing printer hard disk memory 35 Configuring printer hard disk encryption...36 Scenarios...37
  • Lexmark X658DE | Administration Guide - Page 5
    5 Security devices covered in this guide There are two levels of security supported based on the product definition. For a complete list of available functionality, see "Authentication and Authorization" on page 6. Simple security devices C540, C543, C544, C546, C746, E260d, E260dn, E360d, E360dn,
  • Lexmark X658DE | Administration Guide - Page 6
    . Advanced security is supported for those devices that permit the installation of additional solutions to the device. Simple security utilizes the "Panel PIN Protect" to restrict user access to the printer control panel and the "Web Page Password Protect" to restrict admin access to the device
  • Lexmark X658DE | Administration Guide - Page 7
    can use either PIN and Password, or Panel PIN Protect and Web Page Password Protect for some printer models, by simply limiting access to a printer-or specific functions of a printer-to anyone who knows the correct code. This type of security might be appropriate if a printer is located in the lobby
  • Lexmark X658DE | Administration Guide - Page 8
    32 By default, all printers, over 40 individual menus and functions can be protected. Note: For a list of individual access controls and what they do, see "Appendix C: Access controls" on page printing, copying, and faxing Password Authorization only PIN Authorization only Each device can support
  • Lexmark X658DE | Administration Guide - Page 9
    authentication requirements. Configuring building blocks Creating a password for advanced security setup Notes: • This is available only in select printer models. • The Embedded Web Server can store a combined total of 250 user‑level and administrator‑level passwords on each supported device. 1 From
  • Lexmark X658DE | Administration Guide - Page 10
    Modify. Note: To edit a password, change the password, and then click Modify. To delete the password, click Delete Entry. Creating a PIN for advanced security setup Note: This is available only in select printer models. Typically, personal identification numbers (PINs) are used to control access to
  • Lexmark X658DE | Administration Guide - Page 11
    3 Type the name of the PIN configuration in the Setup Name box. Note: Each PIN must have a unique name containing up to 128 UTF‑8 characters (example: "Copy Lockout PIN"). 4 Enter a PIN in the appropriate box, and then reenter the PIN to confirm it. To change the default PIN length: a Click Settings
  • Lexmark X658DE | Administration Guide - Page 12
    click Settings > Security > Security Setup. 2 Under Advanced Security Setup, click Internal Accounts > Add Password-Type the password entered in the preceding field. • E‑mail-Type the user's e-mail address (example: "[email protected]"). • Groups-Select the groups to which the account belongs. Hold
  • Lexmark X658DE | Administration Guide - Page 13
    : A warning with a message associated to your printer IP address or host name will appear. Click Continue to this website (not recommended) to continue and open the printer Web page. 2 From your printer Web page, navigate to: Settings > Security > Security Setup > Active Directory > Join an Active
  • Lexmark X658DE | Administration Guide - Page 14
    want to use this setting, because you want to utilize an existing Service Account or you want to use user credentials (advanced setup), then simply uncheck this box. g Using the scroll bar on the right side of the page, scroll down to the following fields when necessary: • Group Search Base‑‑This
  • Lexmark X658DE | Administration Guide - Page 15
    -Type either cn (common name), uid, userid, or user‑defined. • Mail Attribute-Type a maximum of 48 characters to uniquely identify e‑mail addresses. The default value is "mail." • Full Name Attribute-Type a maximum of 48 characters. The default value is "cn." • Search Base-This is the node in the
  • Lexmark X658DE | Administration Guide - Page 16
    > Security > Security Setup. 2 Under Advanced Security Setup, click LDAP. 3 Click a setup from the list. 4 Make any needed changes in the LDAP Configuration dialog. 5 Click Modify to save the changes, or click Cancel to return to previous values. To delete an existing LDAP setup 1 From the Embedded
  • Lexmark X658DE | Administration Guide - Page 17
    and group designations can be pulled from the existing network comparable to other network services. • MFP Kerberos Username-Type the distinguished name of the print server or servers. • MFP's Password-Type the Kerberos password for the print servers. Search specific object classes • Person-If this
  • Lexmark X658DE | Administration Guide - Page 18
    by selecting Log out on the printer control panel. Creating a simple Kerberos configuration file 1 From the Embedded Web Server, click Settings > Security > Security Setup. 2 Under Advanced Security Setup, click Kerberos 5. 3 Type the KDC (Key Distribution Center) address or host name in the KDC
  • Lexmark X658DE | Administration Guide - Page 19
    that key requests bear a recent time stamp (usually within 300 seconds), the printer clock must be in sync or closely aligned with the KDC system clock. Printer clock settings can be updated manually, or set to use Network Time Protocol (NTP), to automatically sync with a trusted clock-typically the
  • Lexmark X658DE | Administration Guide - Page 20
    each session by selecting Log out on the printer control panel. Specifying the default user domain for the NTLM server 1 Open the Embedded Web Server using the secure version of the page (with the URL beginning "https://"), rather than an unsecured browsing window. Note: If you do not connect to the
  • Lexmark X658DE | Administration Guide - Page 21
    remotely before being automatically logged off. 3 Click Submit to save the changes, or Reset Form to restore the default settings. Using a security template to control function access Note: This is available only in select printer models. Each access control (or function access control), can be set
  • Lexmark X658DE | Administration Guide - Page 22
    select one or more groups to include in the security template. Hold down the Ctrl key to select multiple groups. 8 Click Save Template. Notes: • Certain building blocks (such as Passwords and Pins) do not support separate authorization. • For simple authorization‑level security (in which individual
  • Lexmark X658DE | Administration Guide - Page 23
    device default certificate • Creating a CA‑signed certificate using the device certificate data • Loading of the CA‑signed certificate into the device Installing a Certificate Authority certificate on the device Note: This feature is available only in network printers or printers connected to print
  • Lexmark X658DE | Administration Guide - Page 24
    1 Open a Web browser, and then type the IP address or host name of the printer. 2 From your printer Web page, click Settings > Security > Certificate Management > Set Certificate Defaults. Note: The Set Certificates Defaults menu allows you to update the out‑of‑the‑box information on the device with
  • Lexmark X658DE | Administration Guide - Page 25
    printer Web page, return to the "default" Device Certificate Management page, and then click Install located (128‑character maximum). • Subject Alternate Name-Type the alternate name and prefix that conforms to RFC 2459. For example, type an IP address using the format IP:1.2.3.4, or a DNS address
  • Lexmark X658DE | Administration Guide - Page 26
    Install Signed Certificate-Upload a previously signed certificate. Setting certificate defaults Administrators can set default values for certificates generated for a supported Confidential Print Setup. 2 Enter an option for Max Invalid PIN: • Enter 0 to allow users to enter an incorrect PIN as many
  • Lexmark X658DE | Administration Guide - Page 27
    securely erasing data from a hard disk. Disk wiping can be performed manually, automatically, or on a scheduled basis. Notes: • Not all printers have a hard disk installed. If you do not see Disk Wiping in the main Security menu, then it is not supported on your device. • Disk wiping can take one or
  • Lexmark X658DE | Administration Guide - Page 28
    2 Set the Disk Wiping method (Automatic, Manual, or Scheduled) that matches the selected Wiping Mode: • Single Pass-This lets you overwrite the printer hard disk in a single pass with a repeating bit pattern. • Multi‑pass-This lets you overwrite the printer hard disk with random bit patterns several
  • Lexmark X658DE | Administration Guide - Page 29
    and then follow the Setup E-mail Server link to configure SMTP settings. 10 Click Submit to save the changes, or Reset Form to restore the default settings. E-mail server setup 1 From the Security Audit Log main screen, click Setup E-mail Server. 2 Under SMTP Setup, type the IP address or host name
  • Lexmark X658DE | Administration Guide - Page 30
    11 If the device must provide credentials in order to send e-mail, then enter the information appropriate for your network under Device Credentials. 12 Click Submit to save the changes, or Reset Form to restore the default settings. Viewing or deleting the security audit log • To view or save a text
  • Lexmark X658DE | Administration Guide - Page 31
    community name is "public." 5 To facilitate the automatic installation of device drivers and other printing applications, select Enable PPM Mib (Printer Port Monitor MIB). 6 Click Submit to save the changes, or click Reset Form to restore the default values. SNMP Version 3 1 From the Embedded Web
  • Lexmark X658DE | Administration Guide - Page 32
    save the changes, or click Reset Form to restore the default settings. Configuring your IP security settings Note: This is available only in select printer models. 1 From the Embedded Web Server, click Settings > Network/Ports > IPSec. 2 From the IPSec menu page, configure the following settings
  • Lexmark X658DE | Administration Guide - Page 33
    can be configured: - Address[/subnet]-You factory default setting. 3 Click Submit to save the changes, or click Reset Form to restore the default values. Enabling the security reset jumper Note: This is available only in select printer models. The security reset jumper is a hardware jumper located
  • Lexmark X658DE | Administration Guide - Page 34
    . The hard disk can retain buffered user data from complex scan, print, copy, and fax jobs, as well as form data, and font data. You may want to erase the contents of the memory devices installed in your printer when: • The printer is being decommissioned. • The printer hard drive is being replaced
  • Lexmark X658DE | Administration Guide - Page 35
    uninstalling the solutions, or by restoring factory defaults using the printer Config menu. Completely erasing printer hard disk memory Configuring Disk Wiping in the printer menus enables you to remove confidential material left by scan, print, copy, and fax jobs, by securely overwriting files that
  • Lexmark X658DE | Administration Guide - Page 36
    when a formatted, non‑defective printer hard disk is installed. 3 From the Disk Encryption menu, select either of the following: • Disable-Use this to disable disk encryption. • Enable-Use this to enable disk encryption. Notes: - Disable is the factory default setting. - Changing this setting will
  • Lexmark X658DE | Administration Guide - Page 37
    will perform a power‑on reset, and then return to normal operating mode. Scenarios Scenario: Printer in a public place If your printer is located in a public space such as a lobby, and you want to prevent the general public from using it, then a password or PIN can provide simple protection right
  • Lexmark X658DE | Administration Guide - Page 38
    to save the changes, or Reset Form to cancel all changes. In order to gain access to any function controlled by this security template, users will now be required to enter the appropriate PIN or password. Scenario: Standalone or small office Note: This is available only in select printer models. If
  • Lexmark X658DE | Administration Guide - Page 39
    access to the printer as seamless as other network services. Step 1: Collect information about the network Before configuring the Embedded Web Server to integrate with Active Directory, you need to know the following: • Realm • Domain Controllers • User ID (for the domain) • Password (for the User
  • Lexmark X658DE | Administration Guide - Page 40
    the newly created security template from the drop‑down list next to the name of that function. 4 Click Submit to save the changes, or Reset Form to cancel all changes. Users will now be required to enter the appropriate credentials in order to gain access to any function controlled by the security
  • Lexmark X658DE | Administration Guide - Page 41
    URL, http//
  • Lexmark X658DE | Administration Guide - Page 42
    all network adapter NPA settings change commands are ignored. Option Card Configuration at the Device This controls access to the Option Card Configuration section of the Settings menu from the printer control panel. This applies only when an Option Card with configuration options is installed on
  • Lexmark X658DE | Administration Guide - Page 43
    to the Scan to E‑mail function. Fax Function This controls access to the Scan to Fax function. Flash Drive Color Printing This controls the ability to print color from a flash drive. Users who are denied will have their print jobs printed in black and white. Flash Drive Firmware Updates This
  • Lexmark X658DE | Administration Guide - Page 44
    control Flash Drive Print Flash Drive Scan FTP Function Held Jobs Access PictBridge Printing Release Held Faxes Use Profiles What it does This controls the ability to print from a flash drive. This controls the ability to scan documents to a flash drive. This controls access to the Scan to FTP
  • Lexmark X658DE | Administration Guide - Page 45
    services, except those expressly designated by the manufacturer, are the user's responsibility. For Lexmark technical support, visit http://support.lexmark.com. For information on supplies and downloads, visit www.lexmark.com. If you don't have access to the Internet, you can contact Lexmark by mail
  • Lexmark X658DE | Administration Guide - Page 46
    GIF. Transparency handling and variable bit size courtesy of Jack Palevich. Redistributions of source code must retain the OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA DAMAGE. Visit the ACME Labs Java page for up-to-date versions of this Brian Brown (Google), Chang Hyun Park, Christian
  • Lexmark X658DE | Administration Guide - Page 47
    code, documentation source, and configuration files. "Object" form shall mean any form resulting from mechanical transformation or translation of a Source form, including but not limited to compiled object code mailing lists, source code copies of copy of this License; and
  • Lexmark X658DE | Administration Guide - Page 48
    must include a readable copy of the attribution notices names, trademarks, service marks, or acceptance of support, warranty, , defend, and hold each Contributor harmless by brackets "[]" replaced with your own printed page" as the copyright notice for easier identification within third-party
  • Lexmark X658DE | Administration Guide - Page 49
    ] Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at http://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under
  • Lexmark X658DE | Administration Guide - Page 50
    to a user, i.e. what the user is allowed to do. Authentication and Authorization tools used in the Embedded Web Server. They include: password, PIN, Internal accounts, LDAP, LDAP+GSSAPI, Kerberos 5, and NTLM. A collection of users sharing common characteristics. A profile created and stored in the
  • Lexmark X658DE | Administration Guide - Page 51
    accounts 11 D deleting certificate 25 device, configuring certificate information 24 disk wiping 35 modifying 27 scheduling 27 disposing of printer hard disk 34 downloading certificate 25 E encrypting the printer hard disk 36 erasing hard disk memory 35 erasing non‑volatile memory 35 erasing
  • Lexmark X658DE | Administration Guide - Page 52
    21 restrictions 21 M memory types installed on printer 34 N non‑volatile memory 34 erasing 35 notices 45 NTLM authentication HTTPS and 20 using 20 P Panel PIN Protect 11 password advanced security setup 9 creating or editing 9 password, creating security 10 Web Page Password Protect 10 personal
  • Lexmark X658DE | Administration Guide - Page 53
  • Lexmark X658DE | Administration Guide - Page 54
    www.lexmark.com
  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
Embedded Web Server — Security
Administrator's Guide
November 2012
www.lexmark.com
3077716-001