Xerox ColorQube 9201/9202/9203 Administrator's Guide
Security
Xerox ColorQube™ 9201/9202/9203
System Administrator Guide
System Administrator Guide
154
2.
If prompted, enter the Administrator User ID and Password. The default is [admin] and [1111].
3.
Click on the [Login] button.
4.
Click on the [Security] link.
5.
Select [Machine Digital Certificate Management] in the directory tree.
6.
In the Machine Digital Certificate area:
a.
Click on the [Upload Signed Certificate] button.
b.
In the Upload Machine Digital Certificate, click on the [Browse] button to locate the signed
certificate from the Trusted Certificate Authority and click on the [Open] button.
certificate from the Trusted Certificate Authority and click on the [Open] button.
c.
Click on the [Upload Certificate] button.
d.
If successful, the Current Status in the Machine Digital Certificate area will show ‘A Self
Signed Certificate is established on this device’.
Signed Certificate is established on this device’.
Note:
For the upload to be successful, the signed certificate must match the CSR created by the
device and must be in a format that the device supports.
Note:
The device only supports certificates of type “Base64”.
7.
To view installed certificates click the [Trusted Certificate Authorities] in the directory tree for
[Security]. The installed certificate will appear in the list.
[Security]. The installed certificate will appear in the list.
Enable Secure HTTP (SSL)
Once the device has a device server certificate, you can enable secure HTTP.
1.
In the Properties menu, click on the [Connectivity] link.
2.
Click on the [Protocols] link.
3.
Select [HTTP].
4.
In the Configuration area:
a.
Under Secure HTTP (SSL), select [Enabled].
b.
Enter the [Secure HTTP Port Number] if required.
5.
Click on the [Apply] button.
6.
Close your web browser and then access Internet Services screen again. The Security warning
appears. Self-signed certificates usually cause browsers to display messages which question the
trust of the certificate. Click the [OK] button to continue.
appears. Self-signed certificates usually cause browsers to display messages which question the
trust of the certificate. Click the [OK] button to continue.
IP Sec
IP Sec (IP Security) consists of the IP Authentication Header and IP Encapsulating Security Payload
protocols, that secure IP communications at the network layer of the group of protocols, using both
authentication and data encryption techniques. The ability to send IP Sec encrypted data to the
printer is provided by the use of a public cryptographic key, following a network negotiating session
between the initiator (client workstation) and the responder (printer or server). To send encrypted data
to the printer, the workstation and the printer have to establish a Security Association with each other
by verifying a matching password (shared secret) to each other. If this authentication is successful, a
session public key will be used to send IP Sec encrypted data over the TCP/IP network to the printer.
Providing additional security in the negotiating process, SSL (Secure Sockets Layer protocols) are used
to assure the identities of the communicating parties with digital signatures (individualized checksums
verifying data integrity), precluding password guessing by network sniffers.
protocols, that secure IP communications at the network layer of the group of protocols, using both
authentication and data encryption techniques. The ability to send IP Sec encrypted data to the
printer is provided by the use of a public cryptographic key, following a network negotiating session
between the initiator (client workstation) and the responder (printer or server). To send encrypted data
to the printer, the workstation and the printer have to establish a Security Association with each other
by verifying a matching password (shared secret) to each other. If this authentication is successful, a
session public key will be used to send IP Sec encrypted data over the TCP/IP network to the printer.
Providing additional security in the negotiating process, SSL (Secure Sockets Layer protocols) are used
to assure the identities of the communicating parties with digital signatures (individualized checksums
verifying data integrity), precluding password guessing by network sniffers.