Konica Minolta bizhub C360 bizhub C220/C280/C360 Security Operations User Guid - Page 8

bizhub C360/C280/C220

1-4

1.2

Security Functions

1

1.2

Security Functions

Setting the Enhanced Security Mode to [ON] will validate the security function of this machine. For details of

the settings of different security functions to be changed by turning [ON] the Enhanced Security Mode, see

page 2-8.

Setting the Enhanced Security Mode to [ON] will enhance the authentication function. Access control is then

provided through password authentication for any access to the Administrator Settings, User Authentication

mode, Account Track mode, User Box, a User Box data file, a Secure Print Document, and WebDAV Server.

Access is thereby granted only to the authenticated user.

A password that can be set must meet the requirements of the Password Rules. The machine does not ac-

cept setting of an easily decipherable password. For details of the Password Rules, see page 1-8.

If a wrong password is entered, during password authentication, a predetermined number of times (once to

three times) or more set by the Administrator of the machine, the machine determines that it is unauthorized

access through Prohibited Functions When Authentication Error, prohibiting any further entry of the pass-

word. By prohibiting the password entry operation, the machine prevents unauthorized use or removal of da-

ta, thereby ensuring secured used of the machine.

To cancel the password entry operation prohibited condition, the Administrator must perform the Release

Setting. When the Administrator performs the Release Setting for the operation prohibited condition, a sound

operation control in utmost security is achieved under the control of the Administrator.

By setting the Encryption Key, the data stored in the HDD is encrypted, thereby protecting the data in the

HDD. Note, however, that the Encryption Key does not prevent the HDD from being physically removed.

Make sure of a good operation control.

When the machine is to be discarded, or use of a leased machine is terminated at the end of the leasing con-

tract, the Overwrite All Data function overwrites and erases all data stored in all spaces of the HDD. The func-

tion also resets all passwords saved in the NVRAM to factory settings, preventing leak of data. For details of

items to be cleared by Overwrite All Data function, see page 1-10.

Check Count Clear Conditions

The following are the conditions for clearing or resetting the check count of the number of wrong entries at

the time of authentication by the Enhanced Security Mode.

<Administrator Settings>

-

Authentication of Administrator Settings is successful.

<User Authentication Mode>

-

User Authentication mode is successful.

-

Release of Prohibited Functions When Authentication Error is executed.

<Account Track Mode>

-

Account Track mode is successful.

-


<Secure Print>

-

Authentication of Secure Print is successful.

-


<Box>

-

Authentication of User Box is successful.

-

Authentication for execution of change of User Box Name and User Box Password is successful.

-


<SNMP Password (auth-Password, priv-Password)>

-

Authentication of SNMP is successful.

-


<WebDAV authentication>

-

Authentication of WebDAV is successful.

-


Section	Page
Contents	2
1 Security	6
1.1 Introduction	6
Compliance with the ISO15408 Standard	6
Operating Precautions	6
INSTALLATION CHECKLIST	7
1.2 Security Functions	8
Check Count Clear Conditions	8
1.3 Data to be Protected	9
1.4 Precautions for Operation Control	10
Roles and Requirements of the Administrator	10
Password Usage Requirements	10
Network Connection Requirements for the Machine	11
User information control server control requirements	11
Security function operation setting operating requirements	11
Operation and control of the machine	11
Machine Maintenance Control	11
1.5 Miscellaneous	12
Password Rules	12
Precautions for Use of Various Types of Applications	12
Encrypting communications	13
IPP printing	13
Items of Data Cleared by Overwrite All Data Function	14
Fax functions	15
Bluetooth communication	15
2 Administrator Operations	17
2.1 Accessing the Administrator Settings	17
2.1.1 Accessing the Administrator Settings	17
2.1.2 Accessing the User Mode	19
2.2 Enhancing the Security Function	23
2.2.1 Items cleared by HDD Format	25
2.2.2 Setting the Enhanced Security Mode	25
2.3 Preventing Unauthorized Access	28
Setting Prohibited Functions When Authentication Error	28
2.4 Canceling the Operation Prohibited State	30
Performing Release Setting	30
2.5 Setting the Authentication Method	32
2.5.1 Setting the Authentication Method	32
2.5.2 Setting the External Server	34
2.6 ID & Print Setting Function	36
Setting ID & Print	36
2.7 System Auto Reset Function	38
Setting the System Auto Reset function	38
2.8 User Setting Function	40
Making user setting	40
2.9 Account Track Setting Function	46
Making account setting	46
2.10 User Box Function	51
2.10.1 Setting the User Box	51
2.10.2 Changing the user attributes and account attributes	57
2.11 Changing the Administrator Password	63
Changing the Administrator Password	63
2.12 Protecting Data in the HDD	65
2.12.1 Setting the Encryption Key (encryption word)	65
2.12.2 Changing the Encryption Key	70
2.13 Overwrite All Data Function	72
Setting the Overwrite All Data function	72
2.14 SSL Setting Function	74
2.14.1 Device Certificate Setting	74
2.14.2 SSL Setting	76
2.14.3 Removing a Certificate	77
2.15 S/MIME Communication Setting Function	78
2.15.1 Setting the S/MIME Communication	78
2.15.2 Registering the certificate	82
2.16 SNMP Setting Function	84
2.16.1 Changing the auth-password and priv-password	84
2.16.2 SNMP access authentication function	91
2.16.3 SNMP v3 setting function	91
2.16.4 SNMP network setting function	92
2.17 WebDAV Function	93
Setting the WebDAV Server Password	93
2.18 PC-Fax RX Setting Function	97
PC-Fax RX Setting	97
2.19 TSI User Box Setting Function	101
TSI User Box Setting	101
2.20 TCP/IP Setting Function	105
2.20.1 Setting the IP Address	105
2.20.2 Registering the DNS Server	106
2.21 NetWare Setting Function	107
Making the NetWare Setting	107
2.22 SMB Setting Function	108
Setting the NetBIOS Name	108
2.23 AppleTalk Setting Function	109
Making the AppleTalk Setting	109
2.24 E-Mail Setting Function	110
Setting the SMTP Server (E-Mail Server)	110
3 User Operations	112
3.1 User Authentication Function	112
3.1.1 Performing user authentication	112
3.1.2 Accessing the ID & Print Document	120
3.2 Change Password Function	122
Performing Change Password	122
3.3 Secure Print Function	125
Accessing the Secure Print Document	125
3.4 User Box Function	128
3.4.1 Setting the User Box	128
3.4.2 Changing the User Box Password and user attributes and account attributes	134
3.4.3 Accessing the User Box and User Box file	142
3.4.4 Sending S/MIME box files	146
4 Application Software	149
4.1 PageScope Data Administrator	149
4.1.1 Accessing from PageScope Data Administrator	149
4.1.2 Setting the user authentication method	151
4.1.3 Changing the authentication mode	153
4.1.4 Making the user settings	156
4.1.5 Making the account settings	157
4.1.6 Registering the certificate	158
4.1.7 SNMP Setting Function	160
4.1.8 DNS Server Setting Function	162
4.1.9 NetWare Setting Function	163
4.1.10 SMB Setting Function	164
4.1.11 AppleTalk Setting Function	165
4.1.12 E-Mail Setting Function	166
4.2 PageScope Box Operator	167
4.2.1 Accessing the User Box	167
4.2.2 Creating a User Box	169
4.2.3 Changing the User Box properties (user attributes, account attributes)	170
4.2.4 Accessing the User Box file	172
4.3 HDD TWAIN driver	173
Accessing from the HDD TWAIN driver	173
4.4 PageScope Direct Print	175
Printing through PageScope Direct Print	175
4.5 HDD Backup Utility	177
4.5.1 Backup	177

Konica Minolta bizhub C360 bizhub C220/C280/C360 Security Operations User Guid - Page 8

Security Functions - + time change

Page 8 highlights