Xerox 5755 用户手册
XEROX WorkCentre
5735/5740/5745/5755/5765/5775/5790
Information Assurance Disclosure Paper
Ver. 2.00, March 2011
Page 26 of 50
3) The device sends an authentication request directly to the Domain Controller through the
router using the IP address of the Domain Controller.
4) The Domain Controller responds back to the device through the router whether or not the user
was successfully authenticated.
If (4) is successful, steps 5 – 7 proceed as described in steps 4 - 6 of the Kerberos section.
3.2.2.3.
DDNS
The implementation in the device does not support any security extensions.
3.3. System Accounts
3.3.1. Printing [Multifunction models only]
The device may be set up to connect to a print queue maintained on a remote print server. The login
name and password are sent to the print server in clear text. IPSec should be used to secure this channel.
name and password are sent to the print server in clear text. IPSec should be used to secure this channel.
3.3.2. Network Scanning [Multifunction models only]
Network Scanning may require the device to log into a server. The instances where the device logs into a
server are detailed in the following table. Users may also need to authenticate for scanning. This
authentication is detailed in subsequent sections.
server are detailed in the following table. Users may also need to authenticate for scanning. This
authentication is detailed in subsequent sections.
3.3.2.1.
Device log on
Scanning feature
Device behavior
Scan to File, Public Template
The device logs in to the scan repository as set up by the SA in User
Tools.
Tools.
Scan to E-mail, I-Fax
The device logs into an SMTP Server as set up by the SA in User
Tools. It will only log into the Server when a user attempts to use
the scan-to-email feature. At the time the LDAP server must be
accessed, the device will log into the LDAP server.
Tools. It will only log into the Server when a user attempts to use
the scan-to-email feature. At the time the LDAP server must be
accessed, the device will log into the LDAP server.
The device uses simple authentication on the SMTP server. A network
username and password must be assigned to the device. The device
logs in as a normal user, with read only privileges. User credentials are
not used for this authentication step, and are never transmitted over the
network.
username and password must be assigned to the device. The device
logs in as a normal user, with read only privileges. User credentials are
not used for this authentication step, and are never transmitted over the
network.
Scan to Fax Server
The device logs in to the Fax Server as set up by the SA in User Tools on
the Local UI or from the Properties tab on the WebUI.
the Local UI or from the Properties tab on the WebUI.
Please note that when the device logs into any server the device username and password are sent over
the network in clear text unless SSL has been enabled or IPSec has been configured to encrypt the traffic.
the network in clear text unless SSL has been enabled or IPSec has been configured to encrypt the traffic.
3.3.2.2.
Scan Template Management
This is a web service that allows the SA to manage templates stored in a remote template pool. The
connection to the remote pool can be secured with SSL.
connection to the remote pool can be secured with SSL.