Administrator's Guide
Table Of Contents
- Introduction
- Initial Setup
- Physically Connecting the Printer
- Assigning a Network Address
- Connecting the Printer to a Wireless Network
- Accessing Administration and Configuration Settings
- Initial Setup at the Control Panel
- Initial Setup in CentreWare Internet Services
- Changing the System Administrator Password
- Setting the Date and Time
- Network Connectivity
- Security
- Setting Access Rights
- Configuring Authentication Settings
- Configuring Authorization Settings
- Setting the Authorization Method
- Configuring Local Authorization Settings
- Configuring Network Authorization Settings
- User Permissions
- User Roles
- Editing Print Permissions for the Non-Logged-In Users Role
- Editing Services and Tools Permissions for the Non-Logged-In Users Role
- Creating a New Role
- Assigning Users to a Role for Local Authorization
- Assigning User Groups to a Role for Network Authorization
- Editing a Logged-In User Role
- Specifying Job Override Policies
- Troubleshooting Conflicting Permissions
- Secure HTTP (SSL)
- FIPS 140-2
- Stored Data Encryption
- IP Filtering
- Audit Log
- Installation Policies
- McAfee Embedded Control
- IPsec
- Security Certificates
- Installing Certificates
- Creating and Installing a Xerox® Device Certificate
- Installing the Generic Xerox® Trusted CA Certificate
- Creating a Certificate Signing Request
- Installing Root Certificates
- Installing Domain Controller Certificates
- Viewing, Saving, or Deleting a Certificate
- Specifying the Minimum Certificate Key Length
- 802.1X
- System Timeout
- Overwriting Image Data
- PostScript Passwords
- USB Port Security
- Displaying or Hiding Network Settings
- Hiding User Names on the Control Panel
- Verifying the Software
- Restricting Print File Software Updates
- Specifying Email and Internet Fax Recipient Restrictions
- Disabling the System Administrator Password Reset
- Printing
- Paper Management
- Saving and Reprinting Jobs
- Printing Jobs from CentreWare Internet Services
- Configuring General Print Settings
- Printing an Error Sheet
- Managing Banner Page Printing Options
- Configuring Secure Print Settings
- Hold All Jobs
- UNIX, Linux, and AS/400 Printing
- Print from USB
- Print from Mailbox
- AirPrint
- Allowing Users to Interrupt Active Print Jobs
- Specifying Output Settings
- Copying
- Scanning
- Scanning to a Folder on the Printer
- Scanning to an Email Address
- Workflow Scanning
- Enabling Workflow Scanning
- Configuring File Repository Settings
- Configuring the Default Template
- Configuring a Template to Create a Password-Protected PDF
- Configuring Workflow Scanning General Settings
- Setting Scanned Image File Naming Conventions
- Configuring Custom File Naming
- Configuring Template Pool Repository Settings
- Updating the List of Templates at the Control Panel
- Setting Template Display Settings for the Control Panel
- Configuring a Validation Server
- Scan to USB
- Scanning to a User Home Folder
- Configuring the Printer for the Xerox Scan Utility
- Enabling Remote Scanning using TWAIN
- Configuring Scan To Destination
- Faxing
- Fax Overview
- Fax
- Configuring Required Fax Settings
- Configuring Address Book Settings
- Fax Security
- Setting Fax Defaults
- Setting Fax Feature Defaults
- Fax Forwarding
- Fax Polling
- Fax Mailboxes
- Fax Reports
- Setting Up Fax Reports
- Printing a Fax Report
- Deleting Sent Fax Jobs from Memory
- Server Fax
- Internet Fax
- LAN Fax
- Accounting
- Xerox Standard Accounting
- Network Accounting
- Accounting Using an Auxiliary Access Device
- Enabling Accounting in Print Drivers
- Printing a Copy Activity Report
- Administrator Tools
- Monitoring Alerts and Status
- Energy Saving Settings
- Remote Control Panel
- Entry Screen Defaults
- Setting the Date and Time
- Smart eSolutions and Billing Information
- Cloning
- Address Books
- Font Management Utility
- Network Logs
- Customizing Printer Contact Information
- Display Device Information
- Xerox Online Support
- Restarting the Printer in CentreWare Internet Services
- Taking the Printer Offline
- Resetting the Printer to Factory Default Settings
- Updating the Printer Software
- Adjusting Color, Image, and Text Detection Settings
- Customization and Expansion
- Xerox Extensible Interface Platform
- Auxiliary Interface Kit
- Driver Download Link
- Creating a Custom Single-Touch Scan Service
- Weblet Management
- Configuring Weblet Settings
- Audit Log Event Identification Numbers
- External Keyboard
Security
86 ColorQube 8700/8900 Color Multifunction Printer
System Administrator Guide
FIPS 140-2
If FIPS 140-2 encryption is required, all computers, servers, browser software, security certificates, and
applications must comply with the standard or operate in FIPS-compliant mode. Transmitted and stored
data must be encrypted as specified in United States Federal Information Processing Standard (FIPS)
140-2 (Level 1). You can enable the printer to check that the current configuration ensures the specified
encryption.
Enabling FIPS 140 Mode can prevent the printer from communicating with network devices that
communicate using protocols that do not use FIPS-compliant encryption algorithms. To allow non-FIPS
compliant protocols or features when FIPS 140 mode is enabled, acknowledge the notification of
non-compliance during the validation process.
When non-FIPS compliant protocols are enabled after FIPS mode is enabled, a message appears
indicating the protocols use non-FIPS compliant encryption algorithms. Examples of non-FIPS compliant
protocols include SNMPv3 or NetWare.
When you enable FIPS-140 mode, the printer validates the current configuration by performing the
following checks:
• Validates certificates for features where the printer is the server in the client-server relationship. An
SSL certificate for HTTPS is an example.
• Validates certificates for features where the printer is the client in the client-server relationship. CA
certificates for LDAP, Xerox Extensible Interface Platform (EIP), and Smart eSolutions are examples.
• Validates certificates that are installed on the printer, but not used. Certificates for HTTPS, LDAP, or
SNMPv3 are examples.
• Checks features and protocols for non-compliant encryption algorithms. For example, NetWare and
SNMPv3 use encryption algorithms that are not FIPS-compliant.
When validation is complete, information and links appear in a table at the bottom of the page.
• Click the appropriate link to disable a non-compliant feature, or protocol.
• Click the appropriate link to replace any non-compliant certificates.
• Click the appropriate link to acknowledge that you allow the printer to use non-compliant features
and protocols.