Home » Xerox Manuals » Multifunction Devices » Xerox 6400XF » Manual Viewer

Xerox 6400XF WorkCentre 6400 System Administrator Guide - Page 67

Manual Keying Settings, Internet Key Exchange Settings, Enable Security End Point Address

UPC - 095205759334

Add to My Manuals
Save this manual to your list of manuals

Page 67 highlights

Security 7. If you selected IKE, under Pre-shared Key Passphrase, type the passphrase, then click Next. 8. Configure selected settings below. Manual Keying Settings Manual Keying is used when client systems either do not support IKE or are not configured for IKE. 1. Under IPsec Mode, select Transport Mode or Tunnel Mode. Note: Transport mode only encrypts the IP payload whereas Tunnel mode encrypts the IP header and the IP payload. Tunnel mode provides protection for an entire IP packet by treating it as an Authentication Header (AH), or Encapsulating Security Payload (ESP). 2. If you select Tunnel Mode, under Enable Security End Point Address, select the address type. Options are Disabled, IPv4 Address, or IPv6 Address. 3. Under IPsec Security, select ESP, AH, or BOTH. 4. In the Security Parameter Index: IN field. 5. In the Security Parameter Index: OUT field, type a 32-bit number larger than 256 that identifies the outbound Security Association (SA). 6. Under Hash, select an option: • Secure Hash Algorithm 1 (SHA1): SHA1 is a one-way hashing algorithm that produces a 128- bit hash. It is considered stronger than MD5 for security, but slower for encryption speed. • Method Digest 5 (MD5): MD5 is a one-way hashing algorithm that produces a 128-bit hash. It is considered weaker than MD5 for security, but faster for encryption speed. • None 7. Under Enter Keys as, select ASCII format or Hexadecimal number. 8. Type the following keys: • Hash Key: IN (20 characters) • Hash Key: OUT (20 characters) 9. If ESP or BOTH were selected as the IP Security type, select the Encryption Method (3DES, AES, or None) then type the following: • Encryption Key: IN (24 characters) • Encryption Key: OUT (24 characters) 10. Click Save. Internet Key Exchange Settings IKE is a keying protocol that allows automatic negotiation and authentication, anti-replay services, CA support, and the ability to change encryption keys during an IPSec session. IKE is generally used as part of virtual private networking. IKE Phase 1 authenticates the IPSec peers and sets up a secure channel between the peers to enable IKE exchanges. IKE Phase 2 negotiates IPSec SAs to set up the IPSec tunnel. 1. Under IKE Phase 1, in the Key Lifetime field, type length of time this key will live in Seconds, Minutes, or Hours. When a key reaches its lifetime, the SA is renegotiated and the key is regenerated or refreshed. WorkCentre 6400 Multifunction Printer 67 System Administrator Guide

Section	Page
Contents	3
Introduction	9
Overview	10
Configuration Steps	10
More Information	11
Initial Setup	13
Physical Connection	14
Initial Setup at the Control Panel	15
The Installation Wizard	15
Quick Setup Home	15
Configuration Report	15
System Administrator Access at the Control Panel	15
Manually Setting the Printer’s Ethernet Interface Speed	16
Assigning a Network Address	16
Initial Setup in CentreWare IS	17
Accessing CentreWare IS	17
Locking or Unlocking the Printer	17
Changing the System Administrator Password	17
Accessing the Configuration Report	18
Using the Configuration Overview Page	18
Assigning a Name and Location to the Printer	18
Enabling Services	19
Network Configuration	21
TCP/IP	22
Enabling TCP/IP	22
Configuring TCP/IP Settings at the Control Panel	22
Configuring TCP/IP Settings in CentreWare IS	23
SLP	27
SNMP	28
Configuring SNMP	28
Editing SNMP v1/v2c Properties	28
Editing SNMP v3 Settings	29
SNMP Advanced Settings	29
SSDP	31
LPR/LPD	32
Enabling LPR/LPD	32
Raw TCP/IP Printing	33
Basic Settings	33
Advanced Settings	33
SMTP	35
Configuring SMTP Server Settings	35
LDAP	37
Configuring LDAP/LDAPS Server Settings	37
Configuring Contexts for LDAP	38
Defining User Mappings	38
Configuring Authorization Access by Groups	39
Configuring Filters for LDAP	41
POP3	42
HTTP	43
Enabling HTTP	43
Configuring HTTP Settings	43
Proxy Server	44
NTP	45
AppleTalk	46
Enabling AppleTalk on the printer	46
NetWare	47
Configuring NetWare Settings	47
Microsoft Networking	49
Configuring Microsoft Networking	49
Configuring WINS	49
WSD	50
Enabling WSD	50
Security	53
Setting up Access Rights	54
Overview	54
Local Authentication	55
Network Authentication	56
Authentication Using a Card Reader System	59
Controlling Access to Tools and Features	61
Controlling Access for All Users	61
Controlling Access for an Individual User or Group	61
Digital Certificates	62
Installing a Digital Certificate	62
Managing Trusted Certificate Authorities	63
Secure HTTP (SSL)	65
Enabling Secure HTTP (SSL)	65
IPsec	66
Enabling IPsec	66
Managing Actions	66
Managing Protocol Groups	69
Managing Host Groups	69
Managing Security Policies	70
802.1X	71
Enabling and Configuring 802.1X	71
Stored Data Encryption	73
Overwriting Image Data	74
Manually Deleting Image Data	74
Scheduling Routine Deletion of Image Data	74
PostScript Passwords	76
IP Filtering	77
Creating an IP Filter Rule	77
Editing or Deleting IP Filter Rules	77
Arranging the Execution Order of IP Filter Rules	78
Audit Log	79
Enabling Audit Log	79
Saving an Audit Log	79
Interpreting the Audit Log	79
Printing	81
Saving and Reprinting Jobs	82
Enabling the Reprint Saved Jobs Feature	82
Creating and Managing Saved Jobs Folders	82
Saving and Printing Jobs	83
Backing up Saved Jobs	84
Restoring Saved Jobs	84
Managing Banner Sheet Printing Options	86
Enabling Banner Sheet Printing in CentreWare IS	86
Enabling Banner Sheet Printing for LPR Print Jobs	86
Enabling Banner Sheet Printing at the Control Panel	86
Enabling Banner Sheet Printing in the Printer Driver	86
UNIX, Linux, and AS/400 Printing	88
Xerox Services for UNIX Systems (XSUS)	88
Supported Printing Models	88
Installing XSUS	88
Printing from a Linux Workstation	90
AS/400	90
Managing Copy Functions	93
Specifying Default Copy Settings	94
Changing the Reading Order	95
Creating Copy Feature Presets	96
Edge Erase Presets	96
Image Shift Presets	96
Reduce/Enlarge Presets	97
Scanning	99
Scanning to a Folder on the Printer	100
Enabling or Disabling Scan to Mailbox	100
Setting Scan Policies	100
Managing Folders and Scanned Files	101
Scanning to an Email Address	104
Editing Default Scan Settings	104
Managing the Email Address Book	104
Troubleshooting Scan to Email	104
Workflow Scanning	106
Configuring Workflow Scanning	106
Configuring File Repository Settings	106
Configuring the Default Template	111
Configuring Workflow Scanning General Settings	112
Setting Scanned Image File Naming Conventions	113
Configuring Template Pool Repository Settings	113
Updating the List of Templates at the Control Panel	114
Configuring a Validation Server	114
Troubleshooting Workflow Scanning	115
Scanning to a User’s Home Folder	116
Configuring Scan to Home	116
Configuring the Printer for the Xerox Scan Utility	117
Fax	119
Embedded Fax	120
Enabling Embedded Fax	120
Configuring Embedded Fax Settings	120
Setting Fax Defaults	121
Setting Transmission Defaults	123
Fax Mailboxes	124
Fax Reports	126
Chain Dialing	127
Fax Polling	127
Troubleshooting Embedded Fax	129
Server Fax	131
Configure a Server Fax Filing Repository	131
Configure Server Fax Default Settings	133
Troubleshooting Server Fax	134
Internet Fax	135
Configuring Default Internet Fax Settings	135
Configuring Internet Fax Receive Settings	136
Internet Fax Addresses	137
Troubleshooting Internet Fax	137
LAN Fax	138
Sending a LAN Fax	138
Adding a Fax Recipient	138
Adding a Recipient from a Personal Phonebook	138
Setting up a Cover Sheet	139
Setting LAN Fax Options	139
Editing the Phonebook	140
Accounting	141
Xerox Standard Accounting	142
Enabling Xerox Standard Accounting	142
Creating a Group Account	142
Creating a New User Account and Setting Usage Limits	143
Creating a General Account	143
Maximum Usage Limits	144
Resetting Usage Limits	144
Printing a Report	145
Network Accounting	146
Enabling and Configuring Network Accounting	146
Troubleshooting Network Accounting	147
Enabling Accounting in Print Drivers	148
Administrator Tools	149
Monitoring Alerts and Status	150
Alerts	150
Energy Saving Settings	152
Touch Screen Settings	153
Setting the Default Touch Screen View	153
System Time Out	153
Taking the Printer Offline	154
SMart eSolutions and Billing Information	156
SMart eSolutions	156
View Usage and Billing Information	157
Cloning	159
Address Books	161
Internet Fax and Email Address Book	161
Fax Address Book	162
LAN Fax Address Book	162
Font Management Utility	163
Network Logs	164
Downloading a Network Log to a USB Memory Stick	164
Downloading a Network Log from CentreWare IS	164
Customizing Printer Contact Information	165
Updating the Printer Software	166
Manual	166
Auto Upgrade	167
Customization and Expansion	169
Xerox Extensible Interface Platform (EIP)	170
Enabling Extensible Services	170
Auxiliary Interface Kit	171
Audit Log Event Identification Numbers	173
Audit Log Event Identification Numbers	174

Match case Limit results 1 per page

Security

WorkCentre 6400 Multifunction Printer

System Administrator Guide

If you selected

IKE

, under

Pre-shared Key Passphrase

, type the passphrase, then click

Configure selected settings below.

Manual Keying Settings

Manual Keying is used when client systems either do not support IKE or are not configured for IKE.

Under

IPsec Mode

, select

Transport Mode

Tunnel Mode

Note:

Transport mode only encrypts the IP payload whereas Tunnel mode encrypts the IP header

and the IP payload. Tunnel mode provides protection for an entire IP packet by treating it as an

Authentication Header (AH), or Encapsulating Security Payload (ESP).

If you select

Tunnel Mode

, under

Enable Security End Point Address

, select the address type.

Options are

Disabled

IPv4 Address

, or

IPv6 Address

Under

IPsec Security

, select

ESP

, or

BOTH

In the

Security Parameter Index

field.

In the

Security Parameter Index

OUT

field, type a 32-bit number larger than 256 that identifies

the outbound Security Association (SA).

Under

Hash

, select an option:

•

Secure Hash Algorithm 1 (

SHA1

): SHA1 is a one-way hashing algorithm that produces a 128-

bit hash. It is considered stronger than MD5 for security, but slower for encryption speed.

•

Method Digest 5 (

MD5

): MD5 is a one-way hashing algorithm that produces a 128-bit hash.

It is considered weaker than MD5 for security, but faster for encryption speed.

•

None

Under

Enter Keys as

, select ASCII format or Hexadecimal number.

Type the following keys:

•

Hash Key: IN (20 characters)

•

Hash Key: OUT (20 characters)

ESP

BOTH

were selected as the IP Security type, select the Encryption Method (

3DES

AES

, or

None

) then type the following:

•

Encryption Key: IN (24 characters)

•

Encryption Key: OUT (24 characters)

10.

Click

Save

Internet Key Exchange Settings

IKE is a keying protocol that allows automatic negotiation and authentication, anti-replay services, CA

support, and the ability to change encryption keys during an IPSec session. IKE is generally used as part

of virtual private networking.

IKE Phase 1 authenticates the IPSec peers and sets up a secure channel between the peers to enable

IKE exchanges. IKE Phase 2 negotiates IPSec SAs to set up the IPSec tunnel.

Under

IKE Phase 1

, in the Key Lifetime field, type length of time this key will live in

Seconds

Minutes

, or

Hours

. When a key reaches its lifetime, the SA is renegotiated and the key is

regenerated or refreshed.