Enhanced Security
 |
Using the Machine with Your Office Security Policy
|
|
A security policy is a collection of rules that define the basic information security objectives and standards for an entire organization. All of the settings related to your security policy can be configured together as a group on the machine. The examples shown below describe various security policy setting combinations that can be used for different security objectives.
Preventing information leakage
To prevent information leakage by strengthening the settings related to how data is handled, add a check mark to the items below.
To prevent information leakage by strengthening the settings related to how data is handled, add a check mark to the items below.
[Job] 
[Printing Policy] [Prohibit Immediate Printing of Received Jobs]
[Printing Policy] [Prohibit Immediate Printing of Received Jobs][Storage] [Force Complete Deletion of Data]
[Force Complete Deletion of Data][Interface] [USB Policy] [Prohibit Use as USB Device]
[USB Policy] [Prohibit Use as USB Device][Interface] [USB Policy] [Prohibit Use as USB Storage Device]
[USB Policy] [Prohibit Use as USB Storage Device][Job] [Sending/Receiving Policy] [Allow Sending Only to Registered Addresses]
[Sending/Receiving Policy] [Allow Sending Only to Registered Addresses][Job] [Sending/Receiving Policy] [Force Confirmation of Fax Number]
[Sending/Receiving Policy] [Force Confirmation of Fax Number][Job] [Sending/Receiving Policy] [Prohibit Auto Forwarding]
[Sending/Receiving Policy] [Prohibit Auto Forwarding]Strengthening the authentication functions
To prevent user impersonation by strengthening the password and lockout settings, add a check mark to the items below.
To prevent user impersonation by strengthening the password and lockout settings, add a check mark to the items below.
[Authentication] [Password Operational Policy] [Display Warning When Default Password Is in Use]
[Password Operational Policy] [Display Warning When Default Password Is in Use][Authentication] [Password Operational Policy] [Prohibit Use of Default Password for Remote Access]
[Password Operational Policy] [Prohibit Use of Default Password for Remote Access][Authentication] [Password Settings Policy] [Set minimum number of characters for password] and other items
[Password Settings Policy] [Set minimum number of characters for password] and other items[Authentication] [Lockout Policy] [Enable Lockout]
[Lockout Policy] [Enable Lockout]Increasing the security of communication
To ensure secure communication by verifying certificates and strengthening encryption, which can prevent data from being sniffed or intercepted during network communication, add a check mark to the items below.
To ensure secure communication by verifying certificates and strengthening encryption, which can prevent data from being sniffed or intercepted during network communication, add a check mark to the items below.
[Network] [Communication Operational Policy] [Always Verify Signatures for SMS/WebDAV Server Functions] and other items
[Communication Operational Policy] [Always Verify Signatures for SMS/WebDAV Server Functions] and other items[Key/Certificate] [Prohibit Use of Weak Encryption]
[Prohibit Use of Weak Encryption]Closing network ports to prevent unauthorized access
To manage multiple port-related settings and efficiently configure each port individually, add a check mark to the items below.
To manage multiple port-related settings and efficiently configure each port individually, add a check mark to the items below.
[Network] [Port Usage Policy] [Restrict LPD Port (Port Number: 515)] / [Restrict RAW Port (Port Number: 9100)] and other port settings (14 total)
[Port Usage Policy] [Restrict LPD Port (Port Number: 515)] / [Restrict RAW Port (Port Number: 9100)] and other port settings (14 total)Strengthening user management
To prevent unrecognized users from operating the machine, and to monitor the security by retrieving and checking the audit logs, add a check mark to the items below.
To prevent unrecognized users from operating the machine, and to monitor the security by retrieving and checking the audit logs, add a check mark to the items below.
[Authentication] [Authentication Operational Policy] [Prohibit Guest Users to Use Device]
[Authentication Operational Policy] [Prohibit Guest Users to Use Device][Log] [Force Recording of Audit Log]
[Force Recording of Audit Log][Log] [Force SNTP Settings]
[Force SNTP Settings]For more information, see the following:
Applying a Security Policy to the Machine
Applying a Security Policy to the Machine
 |
Enhancing Security with User Management
|
|
By setting access restrictions based on user authentication, you can ensure a higher level of security and improve the efficiency of operations. You can also use the logs to check or analyze how the machine is being used.
 |
Restricting the Functions Available to Each User
|
|
You can configure the machine to forcibly hold documents for printing, which can stop unintended documents from being printed by mistake, and prevent documents from being left unattended after they are printed. You can also prevent users from registering new destinations, as well as restrict the sending functions that they can use. In addition, you can set a variety of restrictions on the functions that are available to each individual user.
For more information, see the following:
Configuring the Forced Hold Printing Settings
Restricting Access to Address Book and Sending Functions
Registering Destinations in the Address Book
Restricting the Machine's Functions
ACCESS MANAGEMENT SYSTEM Administrator Guide
Configuring the Forced Hold Printing Settings
Restricting Access to Address Book and Sending Functions
Registering Destinations in the Address Book
Restricting the Machine's Functions
ACCESS MANAGEMENT SYSTEM Administrator Guide
 |
Using Various Functions to Prevent Document Leaks
|
|
The machine is equipped with a variety of functions that can prevent document leaks. For example, you can use the Document Scan Lock function to prohibit a document from being copied, or you can use the Secure Watermark function to embed invisible background text that only appears when the document is copied. You can also scan documents as encrypted PDF files, or add a digital signature to documents when sending them.
For more information, see the following:
Disabling Copying of Documents (Document Scan Lock)
Printing With Settings Disabling Unauthorized Copying
Embedding Information That Restricts Copying (Forced Document Scan Lock)
Embedding the "TOP SECRET" Text (Secure Watermark)
Embedding Invisible Text (Forced Secure Watermark)
Adding a Digital Signature to Sent Files
Enhancing the Security of Electronic Files
Disabling Copying of Documents (Document Scan Lock)
Printing With Settings Disabling Unauthorized Copying
Embedding Information That Restricts Copying (Forced Document Scan Lock)
Embedding the "TOP SECRET" Text (Secure Watermark)
Embedding Invisible Text (Forced Secure Watermark)
Adding a Digital Signature to Sent Files
Enhancing the Security of Electronic Files