How it Works
Xerox
Loading...
C
Loading...
Loading...
COLORQUBE 8700
650-sheet finisher
4 pgs831.75 Kb0
Administrator Guide
207 pgs1.22 Mb1
Administrator Guide [fr]
268 pgs1.48 Mb0
Administrator's Guide
258 pgs1.33 Mb0
Control panel
14 pgs1.03 Mb0
DATASHEET
1 pgs234.8 Kb0
Document Feeder Roller and Separator Roller Kit
2 pgs1.17 Mb0
Fax Upgrade kit
2 pgs2.49 Mb0
Feed Roller Kit
4 pgs2.05 Mb0
foreign device interface
2 pgs3.94 Mb0
HOW TO PAGES
14 pgs1.04 Mb0
HOW TO PAGES
14 pgs1.03 Mb0
HOW TO PAGES [ar]
4 pgs374.07 Kb0
HOW TO PAGES [sl]
14 pgs1.02 Mb0
Installation Guide
42 pgs4.12 Mb0
Installation Guide
2 pgs6.37 Mb0
Instruction Sheet
1 pgs809.15 Kb0
maintenance kit
1 pgs327.84 Kb0
Printer Symbols
4 pgs562.9 Kb0
Product symbols [ca]
4 pgs563.81 Kb0
Product symbols [nl]
4 pgs563.62 Kb0
QUICK GUIDE [ru]
4 pgs563.44 Kb0
Quick Use Guide
18 pgs3.28 Mb0
Quick Use Manual
18 pgs2.19 Mb0
Reference Guide
18 pgs2.98 Mb0
Repacking Instructions
2 pgs1.33 Mb0
Scanner and document feeder
2 pgs1.45 Mb0
Secure Installation And Operation
11 pgs332.82 Kb0
Service Manual
1245 pgs77.11 Mb0
Service Manual
87 pgs14.66 Mb0
Software Upgrade
36 pgs4.42 Mb0
Specifications
9 pgs692.39 Kb0
Storage cart
2 pgs617.44 Kb0
USB Card Reader Plug-in Installation Guide
6 pgs152.87 Kb0
User Guide
256 pgs4.55 Mb0
User Guide [cs]
248 pgs8.44 Mb0
User Guide [da]
242 pgs8.06 Mb0
User Guide [de]
250 pgs8.13 Mb0
User Guide [de]
4 pgs563.4 Kb0
User Guide [el]
266 pgs8.31 Mb0
User Guide [es]
271 pgs9.42 Mb0
User Guide [fi]
242 pgs8.12 Mb0
User Guide [fr]
256 pgs8.15 Mb0
User Guide [hu]
256 pgs8.48 Mb0
User Guide [it]
248 pgs8.35 Mb0
User Guide [nl]
250 pgs8.23 Mb0
User Guide [no]
244 pgs8.11 Mb0
User Guide [pl]
248 pgs8.24 Mb0
User Guide [pt]
262 pgs8.34 Mb0
User Guide [ru]
258 pgs8.27 Mb0
User guide [se]
244 pgs8.12 Mb0
User Guide [tr]
244 pgs8.17 Mb0
User Manual
3 pgs155.56 Kb0
User Manual
12 pgs581.56 Kb0
User Manual
14 pgs1.02 Mb1
User Manual
7 pgs726.68 Kb0
User Manual
19 pgs264.47 Kb0
User Manual
38 pgs3.48 Mb0
User Manual
28 pgs360.13 Kb0
User Manual
5 pgs1.01 Mb0
User Manual
2 pgs756.67 Kb0
User Manual
1 pgs858.67 Kb0
User Manual
254 pgs8.16 Mb0
User Manual
14 pgs1.03 Mb0
User Manual
14 pgs1.03 Mb0
User Manual
236 pgs4.84 Mb0
User Manual
16 pgs2.4 Mb0
User Manual [ar]
14 pgs1.03 Mb0
User Manual [bg]
18 pgs3.61 Mb0
User Manual [cz]
4 pgs563.71 Kb0
User Manual [cz]
254 pgs4.73 Mb0
User Manual [da]
14 pgs1.03 Mb0
User Manual [da]
4 pgs563.36 Kb0
User Manual [da]
14 pgs1.03 Mb0
User Manual [da]
250 pgs4.52 Mb0
User Manual [de]
254 pgs4.61 Mb0
User Manual [el]
270 pgs5.02 Mb0
User Manual [el]
14 pgs1.04 Mb0
User Manual [es]
264 pgs4.57 Mb0
User Manual [fi]
18 pgs3.15 Mb0
User Manual [fi]
250 pgs4.73 Mb0
User Manual [fi]
4 pgs563.04 Kb0
User Manual [hu]
14 pgs1.03 Mb0
User Manual [hu]
4 pgs563.91 Kb0
User Manual [hu]
14 pgs1.03 Mb0
User Manual [hu]
266 pgs4.96 Mb0
User Manual [it]
252 pgs4.56 Mb0
User Manual [it]
14 pgs1.03 Mb0
User Manual [it]
4 pgs563.85 Kb0
User Manual [lt]
260 pgs4.73 Mb0
User Manual [lt]
4 pgs563.95 Kb0
User Manual [no]
14 pgs1.03 Mb0
User Manual [no]
4 pgs563.44 Kb0
User Manual [no]
248 pgs4.82 Mb0
User Manual [no]
4 pgs563.26 Kb0
User Manual [no]
14 pgs1.03 Mb0
User Manual [ro]
4 pgs563.86 Kb0
User Manual [sv]
14 pgs1.03 Mb0
User Manual [sv]
4 pgs563.1 Kb0
User Manual [sv]
248 pgs4.51 Mb0
User Manual [tr]
14 pgs1.14 Mb0
User Manual [tr]
4 pgs563.31 Kb0
User Manual [tr]
14 pgs1.03 Mb0
User Manual [tr]
246 pgs4.65 Mb0

Xerox ColorQube 8700, ColorQube 8900 Administrator Guide

Download
Page 1
Xerox ColorQube 8700 / 8900
Color Multifunction Printer Imprimante multifonction couleur
Xerox® ColorQube® 8700 / 8900
System Administrator Guide Guide de l’administrateur système
Page 2
© 2012 Xerox Corporation. All Rights Reserved. Unpublished rights reserved under the copyright laws of the United States. Contents of
this publication may not be reproduced in any form without permission of Xerox Corporation.
Copyright protection claimed includes all forms of matters of copyrightable materials and information now allowed by statutory or
judicial law or hereinafter granted, including without limitation, material generated from the software programs which are displayed on
the screen such as styles, templates, icons, screen displays, looks, and so on.
XEROX® and XEROX and Design®, Phaser®, PhaserSMART®, PhaserMatch®, PhaserCal®, PhaserMeter, CentreWare®, PrintingScout®,
Walk-Up®, WorkCentre®, FreeFlow®, SMARTsend®, Scan to PC Desktop®, MeterAssistant®, SuppliesAssistant®, Xerox Secure Access
Unified ID System®, Xerox Extensible Interface Platform®, ColorQube®, Global Print Driver®, and Mobile Express Driver® are trademarks
of Xerox Corporation in the United States and/or other countries.
Adobe® Reader®, Adobe® Type Manager®, ATM™, Flash®, Macromedia®, Photoshop®, and PostScript® are trademarks of Adobe Systems
Incorporated in the United States and/or other countries.
Apple®, AppleTalk®, Bonjour®, EtherTalk®, Macintosh®, Mac OS®, and TrueType® are trademarks of Apple Inc., registered in the U.S. and
other countries.
HP-GL®, HP-UX®, and PCL® are trademarks of Hewlett-Packard Corporation in the United States and/or other countries.
IBM® and AIX® are trademarks of International Business Machines Corporation in the United States and/or other countries.
Microsoft®, Windows Vista®, Windows®, and Windows Server® are trademarks of Microsoft Corporation in the United States and other
countries.
Novell®, NetWare®, NDPS®, NDS®, IPX™, and Novell Distributed Print Services™ are trademarks of Novell, Inc. in the United States and
other countries.
SGI® and IRIX® are trademarks of Silicon Graphics International Corp. or its subsidiaries in the United States and/or other countries.
Sun, Sun Microsystems, and Solaris are trademarks or registered trademarks of Oracle and/or its affiliates in the United States and other
countries.
UNIX® is a trademark in the United States and other countries, licensed exclusively through X/ Open Company Limited.
PANTONE® and other Pantone, Inc. trademarks are the property of Pantone, Inc.
Document version 1.0: February 2012
Page 3
Contents
1 Introduction 11
Overview ........................................................................................................................................................................... 12
Configuration Steps ............................................................................................................................................. 12
More Information ......................................................................................................................................................... 13
2 Initial Setup 15
Physically Connecting the Printer ........................................................................................................................... 16
Initial Setup at the Control Panel ........................................................................................................................... 17
Installation Wizard ............................................................................................................................................... 17
Quick Setup Home ................................................................................................................................................ 17
Configuration Report ........................................................................................................................................... 17
Disabling the Configuration Report at Startup ......................................................................................... 18
Manually Setting the Ethernet Interface Speed ....................................................................................... 18
Assigning a Network Address ........................................................................................................................... 18
Initial Setup in CentreWare Internet Services ................................................................................................... 19
Accessing CentreWare Internet Services ..................................................................................................... 19
Locking or Unlocking the Printer ..................................................................................................................... 19
Changing the System Administrator Password ......................................................................................... 19
Using the Configuration Overview Page ...................................................................................................... 20
Assigning the Printer Name and Location ................................................................................................... 20
Enabling Services ................................................................................................................................................... 20
Physical Connection Settings ................................................................................................................................... 21
Setting Ethernet Options.................................................................................................................................... 21
Setting USB Options ............................................................................................................................................ 21
3 Network Configuration 23
AppleTalk ......................................................................................................................................................................... 24
NetWare ........................................................................................................................................................................... 25
Configuring NetWare Settings ......................................................................................................................... 25
Service Advertising Protocol .............................................................................................................................. 25
Configuring NetWare Bindery Settings ........................................................................................................ 26
Configuring NetWare Directory Services (NDS) Settings ...................................................................... 26
FTP/SFTP Filing .............................................................................................................................................................. 27
Configuring FTP and SFTP Filing Settings ................................................................................................... 27
IP ......................................................................................................................................................................................... 28
Enabling TCP/IP ..................................................................................................................................................... 28
Configuring TCP/IP Settings at the Control Panel .................................................................................... 28
Configuring IP Settings in CentreWare Internet Services ..................................................................... 29
ColorQube 8700/8900 Color Multifunction Printer 3 System Administrator Guide
Page 4
Contents
SLP ...................................................................................................................................................................................... 33
Configuring SLP ..................................................................................................................................................... 33
SNMP ................................................................................................................................................................................. 34
Enabling SNMP ...................................................................................................................................................... 34
Configuring SNMPv1/v2c ................................................................................................................................... 35
Configuring SNMPv3 ........................................................................................................................................... 35
Configuring SNMP Advanced Settings ......................................................................................................... 36
SSDP ................................................................................................................................................................................... 38
Microsoft Networking .................................................................................................................................................. 39
Configuring Microsoft Networking ................................................................................................................. 39
Configuring WINS................................................................................................................................................. 39
LPR/LPD ............................................................................................................................................................................ 40
Raw TCP/IP Printing ..................................................................................................................................................... 41
Configuring Raw TCP/IP Settings ................................................................................................................... 41
Configuring Raw TCP/IP Advanced Settings .............................................................................................. 41
SMB Filing ........................................................................................................................................................................ 43
Configuring Kerberos Authentication Options for SMB ......................................................................... 43
SMTP Server .................................................................................................................................................................... 44
Configuring SMTP Server Settings .................................................................................................................. 44
Configuring SMTP Authentication Settings ................................................................................................ 44
Configuring SMTP Connection Encryption Settings ................................................................................ 45
Configuring SMTP File Size Management ................................................................................................... 45
Testing SMTP Configuration Settings ........................................................................................................... 45
LDAP .................................................................................................................................................................................. 46
Configuring LDAP Servers .................................................................................................................................. 46
Configuring LDAP Server Optional Information ....................................................................................... 47
Configuring LDAP Contexts............................................................................................................................... 47
Configuring LDAP User Mappings .................................................................................................................. 48
Configuring LDAP Custom Filters .................................................................................................................... 48
HTTP .................................................................................................................................................................................. 50
Enabling HTTP at the Control Panel .............................................................................................................. 50
Configuring HTTP Settings in CentreWare Internet Services ............................................................... 50
HTTP Web Services ............................................................................................................................................... 51
HTTP Advanced Settings .................................................................................................................................... 51
POP3 .................................................................................................................................................................................. 52
Proxy Server..................................................................................................................................................................... 53
Configuring the Proxy Server ............................................................................................................................ 53
NTP ..................................................................................................................................................................................... 54
WSD ................................................................................................................................................................................... 55
Enabling WSD ......................................................................................................................................................... 55
Sleep Mode Network Settings .................................................................................................................................. 56
Configuring Sleep Mode Settings ................................................................................................................... 56
Sleep Mode Network Settings Advanced ..................................................................................................... 56
4 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 5
Contents
4 Security 57
Setting Access Rights ................................................................................................................................................... 58
Authentication ....................................................................................................................................................... 58
Authorization .......................................................................................................................................................... 59
Personalization ....................................................................................................................................................... 59
Setting the Authentication Method and the Authorization Method ................................................ 59
Configuring Authentication Settings .................................................................................................................... 60
Configuring Local Authentication Settings ................................................................................................. 60
Configuring Network Authentication Settings .......................................................................................... 61
Configuring Smart Card Authentication Settings..................................................................................... 64
Configuring Xerox Secure Access Unified ID System Authentication Settings ............................. 66
Configuring Authorization Settings ....................................................................................................................... 68
Configuring Local Authorization Settings .................................................................................................... 68
Configuring Network Authorization Settings ............................................................................................. 68
User Permissions .................................................................................................................................................... 69
Secure HTTP (SSL) ........................................................................................................................................................ 75
Enabling HTTPS (SSL) .......................................................................................................................................... 75
FIPS 140-2 ....................................................................................................................................................................... 76
Enabling FIPS 140 Mode and Checking for Compliance ....................................................................... 77
Stored Data Encryption .............................................................................................................................................. 78
Enabling Encryption of Stored Data .............................................................................................................. 78
IP Filtering ....................................................................................................................................................................... 79
Creating an IP Filter Rule ................................................................................................................................... 79
Editing an IP Filter Rule ...................................................................................................................................... 79
Arranging the Execution Order of IP Filter Rules ...................................................................................... 80
Audit Log .......................................................................................................................................................................... 81
Enabling Audit Log ............................................................................................................................................... 81
Saving an Audit Log ............................................................................................................................................. 81
Interpreting the Audit Log................................................................................................................................. 81
IPsec ................................................................................................................................................................................... 83
Enabling IPsec ........................................................................................................................................................ 83
Managing Actions ................................................................................................................................................. 83
Managing Protocol Groups ............................................................................................................................... 86
Managing Host Groups ....................................................................................................................................... 86
Managing Security Policies ............................................................................................................................... 87
Security Certificates ..................................................................................................................................................... 88
Creating and Installing a Xerox® Device Certificate ............................................................................... 89
Installing the Generic Xerox® Trusted CA Certificate ............................................................................. 89
Creating a Certificate Signing Request ........................................................................................................ 90
Installing Root Certificates ................................................................................................................................ 91
Installing Domain Controller Certificates .................................................................................................... 91
Viewing, Saving, or Deleting a Certificate ................................................................................................... 91
Specifying the Minimum Certificate Key Length ...................................................................................... 92
ColorQube 8700/8900 Color Multifunction Printer 5 System Administrator Guide
Page 6
Contents
802.1X ............................................................................................................................................................................... 93
Enabling and Configuring 802.1X at the Control Panel ......................................................................... 93
Enabling and Configuring 802.1X in CentreWare Internet Services ................................................. 94
System Timeout ............................................................................................................................................................ 96
Setting System Timeout Values ...................................................................................................................... 96
Setting the System Timeout Values at the Control Panel ..................................................................... 96
Overwriting Image Data ............................................................................................................................................ 97
Scheduling Routine Deletion of Image Data ............................................................................................. 98
Manually Deleting Image Data ....................................................................................................................... 99
Manually Deleting Image Data at the Control Panel ............................................................................. 99
Immediate Job Overwrite .................................................................................................................................. 99
PostScript Passwords ................................................................................................................................................. 101
Enabling or Creating PostScript Passwords ............................................................................................... 101
USB Port Security ........................................................................................................................................................ 102
Enabling or Disabling USB Ports .................................................................................................................... 102
Displaying or Hiding Network Settings on the Control Panel .................................................................... 103
Hiding User Names on the Control Panel .......................................................................................................... 104
Verifying the Software .............................................................................................................................................. 105
5 Printing 107
Saving and Reprinting Jobs ..................................................................................................................................... 108
Enabling the Reprint Saved Jobs Feature .................................................................................................. 108
Creating and Managing Saved Jobs Folders ............................................................................................ 108
Saving and Printing Jobs .................................................................................................................................. 109
Backing up Saved Jobs ...................................................................................................................................... 110
Restoring Saved Jobs from an FTP Repository ........................................................................................ 110
Printing Jobs from CentreWare Internet Services .......................................................................................... 111
Managing Banner Page Printing Options .......................................................................................................... 112
Enabling Banner Page Printing in CentreWare Internet Services ..................................................... 112
Enabling Banner Page Printing at the Control Panel............................................................................. 112
Enabling Banner Page Printing in the Print Driver .................................................................................. 113
Configuring Secure Print Settings ......................................................................................................................... 114
Configuring Secure Print Device Policies .................................................................................................... 114
Configuring Secure Print Driver Defaults ................................................................................................... 114
Chapter Hold All Jobs ............................................................................................................................................. 115
Configuring the Hold all Jobs Feature ......................................................................................................... 115
UNIX, Linux, and AS/400 Printing ........................................................................................................................ 116
Xerox® Services for UNIX Systems ............................................................................................................... 116
Printing from a Linux Workstation ............................................................................................................... 117
Adding the Printer ............................................................................................................................................... 118
Printing with CUPS ............................................................................................................................................. 118
AS/400 .................................................................................................................................................................... 118
6 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 7
Contents
Print from USB ............................................................................................................................................................. 119
Enabling Print from USB ................................................................................................................................... 119
Print from Mailbox ...................................................................................................................................................... 120
Enabling Print From Mailbox .......................................................................................................................... 120
6 Managing Copy Functions 121
Specifying Default Copy Settings ......................................................................................................................... 122
Changing the Reading Order .................................................................................................................................. 123
Accessing Copy Presets ............................................................................................................................................. 124
Edge Erase Presets .............................................................................................................................................. 124
Changing Image Shift Presets ....................................................................................................................... 124
Changing Reduce/Enlarge Presets ................................................................................................................ 124
7 Scanning 125
Scanning to a Folder on the Printer ..................................................................................................................... 126
Enabling or Disabling Scan to Mailbox ....................................................................................................... 126
Setting Scan Policies .......................................................................................................................................... 126
Managing Folders and Scanned Files .......................................................................................................... 127
Scanning to an Email Address ................................................................................................................................ 130
Email ........................................................................................................................................................................ 130
Managing the Email Address Book .............................................................................................................. 134
Workflow Scanning .................................................................................................................................................... 135
Configuring Workflow Scanning ................................................................................................................... 135
Configuring File Repository Settings ........................................................................................................... 135
Configuring the Default Template ............................................................................................................... 140
Configuring Workflow Scanning General Settings ................................................................................. 143
Setting Scanned Image File Naming Conventions ................................................................................ 143
Configuring Template Pool Repository Settings ..................................................................................... 144
Updating the List of Templates at the Control Panel ........................................................................... 144
Setting Template Display Settings for the Control Panel .................................................................... 145
Configuring a Validation Server .................................................................................................................... 145
Scan to USB................................................................................................................................................................... 146
Enabling Scan to USB ........................................................................................................................................ 146
Scanning to a User Home Folder .......................................................................................................................... 147
Configuring the Printer for the Xerox Scan Utility ......................................................................................... 149
Enabling Remote Scanning using TWAIN ......................................................................................................... 150
ColorQube 8700/8900 Color Multifunction Printer 7 System Administrator Guide
Page 8
Contents
8 Faxing 151
Embedded Fax ............................................................................................................................................................. 152
Enabling Embedded Fax................................................................................................................................... 152
Configuring Embedded Fax Settings ........................................................................................................... 153
Setting Fax Defaults .......................................................................................................................................... 153
Setting Transmission Defaults ....................................................................................................................... 155
Fax Reports ............................................................................................................................................................ 157
Fax Forwarding .................................................................................................................................................... 158
Fax Polling ............................................................................................................................................................. 159
Server Fax ...................................................................................................................................................................... 161
Configuring a Server Fax Filing Repository ............................................................................................... 161
Configuring Server Fax General Settings ................................................................................................... 165
Configuring Server Fax Settings .................................................................................................................... 165
Configuring Server Fax Image-Quality Settings...................................................................................... 165
Configuring Layout Adjustment Settings .................................................................................................. 165
Configuring Server Fax Filing Options ......................................................................................................... 165
Internet Fax .................................................................................................................................................................. 166
Accessing the Internet Fax Setup Page ...................................................................................................... 166
Configuring Required Settings ....................................................................................................................... 166
Configuring General Internet Fax Settings ............................................................................................... 167
Configuring Internet Fax Receive Settings ............................................................................................... 167
Configuring Address Book Settings .............................................................................................................. 168
Configuring Default Internet Fax Settings ............................................................................................... 168
Setting File Compression Options ................................................................................................................. 168
Configuring Internet Fax Security Settings .............................................................................................. 168
LAN Fax .......................................................................................................................................................................... 169
9 Accounting 171
Xerox Standard Accounting .................................................................................................................................... 172
Enabling Xerox® Standard Accounting ....................................................................................................... 172
Setting Accounting Workflow Options ........................................................................................................ 172
General and Group Accounts .......................................................................................................................... 173
Adding a New User and Setting Usage Limits ......................................................................................... 173
Assigning Users to an Account....................................................................................................................... 174
Maximum Usage Limits .................................................................................................................................... 174
Printing a Report ................................................................................................................................................. 175
Network Accounting .................................................................................................................................................. 176
Enabling Network Accounting ........................................................................................................................ 176
Setting Network Accounting Workflow Options...................................................................................... 176
Configuring Job Limits Server Settings ....................................................................................................... 177
Disabling the Job Limits Web Service .......................................................................................................... 177
Selecting User Prompts and Validation Options ..................................................................................... 177
8 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 9
Contents
Accounting Using an Auxiliary Access Device .................................................................................................. 178
Enabling Accounting Using an Auxiliary Access Device ....................................................................... 178
Displaying Your Company Logo on the Blocking Screen ..................................................................... 178
Enabling Accounting in Print Drivers ................................................................................................................... 179
Enabling Accounting in a Windows Print Driver ...................................................................................... 179
Enabling Accounting in an Apple Macintosh Print Driver .................................................................... 179
10 Administrator Tools 181
Monitoring Alerts and Status ................................................................................................................................. 182
Alert Notification ................................................................................................................................................ 182
Energy Saving Settings ............................................................................................................................................. 184
Configuring Sleep Mode Settings at the Control Panel ........................................................................ 184
Setting the Date and Time ...................................................................................................................................... 185
Setting the Date and Time in CentreWare Internet Services ............................................................ 185
Setting the Date and Time at the Control Panel .................................................................................... 185
Taking the Printer Offline ........................................................................................................................................ 186
Restarting the Printer in CentreWare Internet Services ....................................................................... 186
Restarting the Printer at the Control Panel ............................................................................................... 186
SMart eSolutions and Billing Information ......................................................................................................... 187
SMart eSolutions ................................................................................................................................................. 187
View Usage and Billing Information ........................................................................................................... 189
Cloning ............................................................................................................................................................................ 190
Creating a Clone File .......................................................................................................................................... 190
Installing a Clone File ........................................................................................................................................ 190
Address Books .............................................................................................................................................................. 191
Device Address Book .......................................................................................................................................... 191
Fax Address Book ................................................................................................................................................ 194
LAN Fax Address Book ...................................................................................................................................... 194
Font Management Utility ........................................................................................................................................ 195
Network Logs ................................................................................................................................................................ 196
Downloading a Network Log Using a USB Flash Drive ......................................................................... 196
Downloading a Network Log from CentreWare Internet Services ................................................... 196
Customizing Printer Contact Information ......................................................................................................... 197
Setting Job Deletion Options at the Control Panel ........................................................................................ 198
Setting the Fax Country at the Control Panel .................................................................................................. 199
Setting the Paper Size Preference at the Control Panel ............................................................................... 200
Xerox Online Support ................................................................................................................................................. 201
Enabling Xerox Online Support ...................................................................................................................... 201
Updating the Printer Software .............................................................................................................................. 202
Enabling Upgrades ............................................................................................................................................. 202
Manually Upgrading Printer Software ........................................................................................................ 202
Manually Updating the Software Using a USB Flash Drive ................................................................ 203
Configuring Automatic Updates ................................................................................................................... 203
Resetting the Printer to Factory Default Settings .......................................................................................... 204
ColorQube 8700/8900 Color Multifunction Printer 9 System Administrator Guide
Page 10
Contents
A Audit Log Event Identification Numbers 205
Audit Log Event Identification Numbers ........................................................................................................... 206
10 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 11
This chapter includes:
Overview .............................................................................................................................................................................. 12
More Information ............................................................................................................................................................ 13
1

Introduction

ColorQube 8700/8900 Color Multifunction Printer 11 System Administrator Guide
Page 12
Introduction
Notes:
Network features are not available when you are connected over USB. Embedded fax features are not available for all printer models.
Note: Most configuration settings are located on the Properties tab in CentreWare Internet Services.
Note: Not all printer models support these features.

Overview

This guide is designed for a system administrator with network administrator rights who understands networking concepts and has experience creating and managing network user accounts.
Use this guide to help you install, configure, and manage your printer on a network.

Configuration Steps

When configuring the printer for the first time, complete the following tasks:
1. Connect an Ethernet cable from your printer to the network.
2. Confirm that your printer is recognized on your network. By default, the printer is configured to
receive an IP address from a DHCP server over a TCP/IP network. If you have another type of network, or want to assign a static IP address, see IP on page 28.
3. Complete the installation wizards. These wizards help you configure basic printer settings such as
your location, time zone, and date and time preferences.
4. Print a Configuration Report listing the current printer configuration. Review the report and locate
the printer IP address. For details, see Configuration Report on page 17.
5. Open a Web browser and type the IP address of your printer to access CentreWare Internet Services.
CentreWare Internet Services is the administration and configuration software installed on the embedded Web server in the printer. For details, see Accessing CentreWare Internet Services on page 19.
6. Print the Configuration Checklist. The Configuration Checklist provides space for you to write down
important information as you go through the configuration process. Use it to record information about your network settings, including passwords, network paths, and server addresses.
7. Configure Authentication. For details, see Setting Up Access Rights.
8. Configure Security. For details, see Security on page 57.
9. Enable services in CentreWare Internet Services. For details, see Enabling Services on page 20.
10. Configure Print, Scan, and Fax features. For details, see Printing on page 107, Scanning on page 125,
and Faxing on page 151.
11. Configure Accounting. For details, see Accounting on page 171.
12 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 13
Resource
Location
Installation Guide
Packaged with the printer.
Quick Use Guide
Packaged with the printer.
User Guide
ColorQube 8700 Color Multifunction Printer:
www.xerox.com/office/CQ8700docs
ColorQube 8900 Color Multifunction Printer:
www.xerox.com/office/CQ8900docs
Recommended Media List
United States:
ColorQube 8700 Color Multifunction Printer:
www.xerox.com/paper
ColorQube 8900 Color Multifunction Printer:
www.xerox.com/paper
European Union:
ColorQube 8700 Color Multifunction Printer:
www.xerox.com/europaper
ColorQube 8900 Color Multifunction Printer:
www.xerox.com/europaper
Technical support information for your printer; including online technical support, Online Support Assistant, and driver downloads.
ColorQube 8700 Color Multifunction Printer:
www.xerox.com/office/CQ8700support
ColorQube 8900 Color Multifunction Printer:
www.xerox.com/office/CQ8900support
Information Pages
Print from the control panel.
Information about menus or error messages
Press the control panel Help (?) button.
Order supplies for your printer
ColorQube 8700 Color Multifunction Printer:
www.xerox.com/office/CQ8700supplies
ColorQube 8900 Color Multifunction Printer:
www.xerox.com/office/CQ8900supplies
A resource for tools and information, including interactive tutorials, printing templates, helpful tips, and customized features to meet your individual needs.
www.xerox.com/office/businessresourcecenter
Local sales and support center
ColorQube 8700 Color Multifunction Printer:
www.xerox.com/office/worldcontacts
ColorQube 8900 Color Multifunction Printer:
www.xerox.com/office/worldcontacts
Printer registration
ColorQube 8700 Color Multifunction Printer:
www.xerox.com/office/register
ColorQube 8900 Color Multifunction Printer:
www.xerox.com/office/register
Xerox® Direct online store
www.direct.xerox.com/

More Information

Introduction
ColorQube 8700/8900 Color Multifunction Printer 13 System Administrator Guide
Page 14
Introduction
14 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 15
This chapter includes:
Physically Connecting the Printer .............................................................................................................................. 16
Initial Setup at the Control Panel .............................................................................................................................. 17
Initial Setup in CentreWare Internet Services ...................................................................................................... 19
Physical Connection Settings ...................................................................................................................................... 21
2

Initial Setup

ColorQube 8700/8900 Color Multifunction Printer 15 System Administrator Guide
Page 16
Initial Setup

Physically Connecting the Printer

1. Connect the power cord to the printer, and plug it into an electrical outlet.
2. Connect one end of a Category 5 or better Ethernet cable to the Ethernet port on the back of the
printer. Connect the other end of the cable to a correctly configured network port.
3. If your printer has fax installed, connect it to a correctly configured telephone line.
4. Turn on the printer.
16 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 17
Initial Setup
Note: You can change these settings at any time.
Note: You can complete the wizard at any time.
Note: Not all options listed are supported on all printers. Some options apply only to specific printer
models or configurations.

Initial Setup at the Control Panel

Installation Wizard

The Installation wizard starts the first time you turn on the printer. The wizard prompts you with a series of questions to help you configure basic printer settings.

Quick Setup Home

After the Installation wizard completes, the Quick Setup Home wizard appears. Use the Quick Setup Home wizard to configure printer settings.
Use the IP Address Settings wizard to assign a static IP address or change the default dynamic
addressing settings.
Use the Contact Numbers wizard to type phone numbers for support or supplies. Use the Fax Setup wizard to configure basic embedded fax settings.
After the Quick Setup Home wizard completes, the printer restarts and a Configuration Report automatically prints.
1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Device Settings > Quick Setup Home.
3. To start a wizard, touch IP Address Settings, Contact Numbers, or Fax Setup.
4. Follow the onscreen instructions.

Configuration Report

The Configuration Report lists all current settings of the printer. A configuration report prints at startup by default.
1. In CentreWare Internet Services, click Status > Configuration Report.
2. To print the report, click Print Configuration Page.
To turn off automatic printing of a Configuration Report at startup, see Disabling the Configuration
Report at Startup on page 18.
ColorQube 8700/8900 Color Multifunction Printer 17 System Administrator Guide
Page 18
Initial Setup
Note: If the system administrator has restricted printing of the Configuration Report, you need a user
name and password to print. For details, see the system administrator.
System Administrator Access at the Control Panel
1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Press the Log In/Out button.
3. Type admin and touch Next.
4. Type the Admin Password and touch Enter. The default password is 1111.

Disabling the Configuration Report at Startup

1. In CentreWare Internet Services, click Properties > Services.
2. Click Printing > General.
3. Under Configuration Report, clear Print at Power on.
4. Click Apply to save the new settings or Undo to retain the previous settings.

Manually Setting the Ethernet Interface Speed

The Ethernet interface on the printer automatically detects the speed of your network. Any auto-sensing devices connected to the network, such as a hub, do not always detect the correct speed. Refer to the configuration report to ensure that the printer detects the correct network speed.
1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Network Settings > Advanced Settings.
3. When the warning message appears, touch Continue.
4. Touch Ethernet Physical Media.
5. Select the speed to match the speed of your hub or switch.
6. Touch Save, then touch Close.

Assigning a Network Address

The printer automatically acquires a network address from a DHCP server by default. To assign a static IP address, configure DNS server settings, or configure other TCP/IP settings, see IP on page 28.
18 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 19
Initial Setup
Note: If your printer is locked, type the system administrator user name and password to access the
Properties tab. The administrator user name is admin and the default password is 1111.

Initial Setup in CentreWare Internet Services

CentreWare Internet Services is the administration and configuration software installed on the embedded Web server in the printer. It allows you to configure and administer the printer from a Web browser.
Before you begin:
TCP/IP and HTTP must be enabled to access CentreWare Internet Services. If you disable either of
these services, enable them at the printer before accessing CentreWare Internet Services.
Locate your printer IP address using the Configuration Report.

Accessing CentreWare Internet Services

At your computer, open a Web browser, type the IP address of the printer in the address field, then press Enter or Return.

Locking or Unlocking the Printer

You can select a preset user permissions configuration for users who do not log in to the printer.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click User Permissions.
3. Click the Non-Logged In Users tab.
4. Under Actions, click Edit.
5. Click the Services and Tools tab.
6. Under Presets, select an option.
7. Click Apply.

Changing the System Administrator Password

Xerox recommends that you change the default system administrator password after you configure the printer. Be sure to store the password in a secure location.
1. In CentreWare Internet Services, click Properties > Security.
2. Click Admin Password.
3. Under User Name, type the New Password.
4. Retype the password to verify.
5. Click Apply to save the new settings or Undo to retain the previous settings.
ColorQube 8700/8900 Color Multifunction Printer 19 System Administrator Guide
Page 20
Initial Setup
Note: Not all options listed are supported on all printers. Some options apply only to specific printer
models or configurations.
Note: If a service is not enabled on the Service Registration page, you cannot view or manage it from
the Tools and Features page. Ensure that the desired service is enabled.

Using the Configuration Overview Page

The Configuration Overview page contains links to the commonly-accessed pages on the Properties tab. Use the Configuration Overview page to help you install your printer successfully.
1. In CentreWare Internet Services, click Properties > Configuration Overview.
2. To configure a service or feature, click Settings. To create a clone file, click View.

Assigning the Printer Name and Location

1. In CentreWare Internet Services, click Properties > Description.
2. Under Device Name, type a name for the printer.
3. Under Location, type the location of the printer.
4. Click Apply to save the new settings or Undo to retain the previous settings.

Enabling Services

Services must be enabled before they can be managed through the Tools and Feature Access page.
1. In CentreWare Internet Services, click Properties > Services.
2. Click Service Registration.
3. Select the services to enable or click Enable All.
4. Click Apply to save the new settings or Undo to retain the previous settings.
Viewing Services on the Control Panel
1. At the printer control panel, press the Machine Status button, then touch the Machine Information
tab.
2. Touch Installed Options.
All installed options registered in CentreWare Internet Services and their status appear. Set options to Locked or Unlocked on the Tools & Services page.
20 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 21
Initial Setup
Note: Restart the printer for the new settings to take effect.

Physical Connection Settings

You can specify Ethernet and USB settings, such as Ethernet Rated Speed, USB Connection Mode, and Print Timeout for USB printing.

Setting Ethernet Options

1. In CentreWare Internet Services, click Properties > Connectivity > Physical Connections.
2. Click Ethernet.
3. Under Rated Speed, click the down arrow and select the speed of your connection.
4. Click Apply to save the new settings or Undo to retain the previous settings.
Click Default All to reset settings to default values.

Setting USB Options

1. In CentreWare Internet Services, click Properties > Connectivity > Physical Connections.
2. Click USB Settings.
3. Under USB Connection Mode, select an option: Software Tools: Select this option if you are using Xerox
disable Direct Printing via Driver. Xerox representatives also use this option to connect directly to the printer and use diagnostic software and other software utilities.
Direct Printing via Driver: Select this option to allow users to connect to the printer using a USB
cable.
4. Under Print Timeout, type the amount of time in seconds that the printer waits inactive before
disconnecting from a device connected to the port. Type 0 to disable the timeout.
5. Click Apply.
®
Copier Assistant, or if you want to
ColorQube 8700/8900 Color Multifunction Printer 21 System Administrator Guide
Page 22
Page 23
This chapter includes:
AppleTalk ............................................................................................................................................................................ 24
NetWare .............................................................................................................................................................................. 25
FTP/SFTP Filing ................................................................................................................................................................. 27
IP ............................................................................................................................................................................................ 28
SLP ......................................................................................................................................................................................... 33
SNMP .................................................................................................................................................................................... 34
SSDP ...................................................................................................................................................................................... 38
Microsoft Networking ..................................................................................................................................................... 39
LPR/LPD ................................................................................................................................................................................ 40
Raw TCP/IP Printing ........................................................................................................................................................ 41
SMB Filing ........................................................................................................................................................................... 43
SMTP Server ....................................................................................................................................................................... 44
LDAP ...................................................................................................................................................................................... 46
HTTP ..................................................................................................................................................................................... 50
POP3...................................................................................................................................................................................... 52
Proxy Server ........................................................................................................................................................................ 53
NTP ........................................................................................................................................................................................ 54
WSD ...................................................................................................................................................................................... 55
Sleep Mode Network Settings ..................................................................................................................................... 56
3

Network Configuration

ColorQube 8700/8900 Color Multifunction Printer 23 System Administrator Guide
Page 24
Network Configuration

AppleTalk

AppleTalk is a proprietary suite of protocols developed for networking computers by Apple, Inc. An AppleTalk zone is a group of nodes or networks organized by departments or physical locations.
Before you begin:
Verify that there is an existing operational AppleTalk network. Determine the AppleTalk Name you wish to assign to your printer. Determine the AppleTalk Zone, if used, to assign to your printer.
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click AppleTalk.
3. Under Protocol, select Enabled to enable the protocol.
4. Under Printer Name, type the printer name or use the default name. The default printer name is
based on the printer MAC address.
5. Under Zone Name, type a new zone name or use the default AppleTalk local zone. The default
AppleTalk local zone is *.
6. Click Apply to save the new settings or Undo to retain the previous settings.
7. Click Default All to reset settings to default values.
24 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 25
Network Configuration

NetWare

NetWare is a network operating system developed by Novell to run various services using cooperative multitasking.
Before you begin:
Ensure an existing operational NetWare network is available. Verify that you have administrator rights to log in to a NetWare file server or tree. Ensure that the printer is connected to the network. Set up a print server object using the appropriate Novell utility. Refer to the Novell system
documentation for help.

Configuring NetWare Settings

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click NetWare.
3. Select Enabled to enable the protocol.
4. Select IP or IPX from the Filing Transport menu.
5. Select the Frame Type from the menu. Options are:
Auto Ethernet II Ethernet 802.2 Ethernet 802.3
6. Type a polling rate between 1–240 seconds for the print server in Queue Poll Interval. The default
value is 5 seconds.
7. Type the Printer Server Name. The default name is XRX_MAC address.
8. Type then retype the server password in the New Print Server Password and Retype New Print Server
Password fields.
9. Enable Select to save new password.

Service Advertising Protocol

Service Advertising Protocol (SAP) sends periodic broadcast messages to other network components about available services on the printer. SAP facilitates dynamic adding and removing of services on an IPX internetwork. As servers start up and shut down, they can advertise and remove their services using SAP.
1. Under Protocol, select Enabled.
2. Under SAP Frequency, type the time in seconds between 15300. The default time value is 60
seconds.
ColorQube 8700/8900 Color Multifunction Printer 25 System Administrator Guide
Page 26
Network Configuration
Note: When the printer uses Bindery mode, the NDS Tree and NDS Context fields are blank.
Note: The NDS server is used for Workflow Scanning and Server Fax only.

Configuring NetWare Bindery Settings

Bindery services are a stand-alone database system that contains user information and security data. NetWare can use Bindery services for authentication.
If you are using Bindery mode, under Bindery Settings, type the names of up to four primary file servers in the File Server fields.

Configuring NetWare Directory Services (NDS) Settings

NetWare Directory Services (NDS) is a hierarchical, object-oriented database that represents all of the assets of an organization in a logical tree structure. Assets can include printers, servers, computers, people, organizations, and more.
1. Under NetWare Directory Services (NDS), select the preferred address type. Select IPv4 to set a
static IPv4 address or select Host Name to configure with an NDS server.
2. Type a name for the NDS tree. The default entry for this field is Xerox_DS_Tree. If you are using
bindery or bindery emulation, leave this field blank.
3. Type a name for the context. The default entry for this field is Xerox_DS_Context. If you are using
bindery or bindery emulation, leave this field blank.
4. Click Apply to save the new settings or Undo to retain the previous settings.
5. Click Default All to reset settings to default values.
26 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 27
Network Configuration

FTP/SFTP Filing

File Transport Protocol (FTP) is a standard network protocol used to pass and manipulate files over a TCP/IP network. Several services running on your printer, including Network Scanning, Saved Jobs Backup, and Software upgrade can use FTP as a filing service.
Secure FTP (SFTP) is a standard network protocol that is used with SSH to ensure that data is encrypted and transferred securely.

Configuring FTP and SFTP Filing Settings

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click FTP/SFTP Filing.
3. To configure FTP or SFTP filing settings for each service listed under Within Services, click the link.
4. Under Mode, select an option: Passive mode transfers data over a random port specified by the FTP server from a connection
made from the printer.
Active mode transfers data over a fixed, known port from a connection made from the server.
5. Click Apply.
ColorQube 8700/8900 Color Multifunction Printer 27 System Administrator Guide
Page 28
Network Configuration
Note: By default, TCP/IP is enabled. If you disable TCP/IP, enable it at the printer control panel before
you access CentreWare Internet Services.
IP
Internet Protocol (IP) is a protocol within the Internet Protocol Suite that manages the transmission of messages from computer to computer.

Enabling TCP/IP

1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Network Settings > TCP/IP Settings.
3. Touch TCPIP Enablement.
4. Touch Enable for IPv4 or IPv6, then touch Save.

Configuring TCP/IP Settings at the Control Panel

Manually Configuring the Network Address
1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Network Settings > TCP/IP Settings.
3. Touch Dynamic Addressing.
4. Touch Disabled, then touch Save.
5. Touch IP Address/Host Name.
6. Touch the field under IPv4 Address, then type the static IP address using the touch screen keypad.
7. Touch the field under Host Name, then type the host name.
8. Touch Save, then touch Close.
9. Touch Subnet and Gateway.
10. Touch Subnet Mask, then type the subnet mask address using the touch screen keypad.
11. Touch Save.
12. Touch IP Gateway, type the gateway address using the touch screen keypad, then touch Save.
Configuring Dynamic Address Settings
1. At the printer control panel, press the Machine Status button.
2. Touch Tools > Network Settings > TCP/IP Settings.
3. Touch Dynamic Addressing.
4. Touch DHCP, then touch Save.
28 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 29
Network Configuration
Note: If DHCP is enabled, your company DHCP server can provide the following information.
CAUTION: If both IPv4 and IPv6 are disabled, you cannot access CentreWare Internet Services. To
access IPv4 and IPv6 settings in CentreWare Internet Services, enable TCP/IP at the printer control panel. If you disable TCP/IP or change the IP address, any dependent protocols are disabled and the network controller restarts.
Configuring DNS/DDNS Settings at the Control Panel
Domain Name System (DNS) and Dynamic Domain Name System (DDNS) are systems that map host names to IP addresses.
1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Network Settings > TCP/IP Settings.
3. Touch DNS Configuration.
4. Touch Domain Name, touch the field under Domain Name, type the domain name using the touch
screen keypad, then touch Save.
5. Touch DNS Servers. a. Touch Primary DNS Server, then type the server address using the touch screen keypad. b. Touch Alternate DNS Server #1, then type the server address using the touch screen keypad. c. Touch Alternate DNS Server #2, then type the server address using the touch screen keypad. d. Touch Save, then touch Close to exit the DNS Servers screen.
6. Touch Dynamic DNS Registration, and touch Enable under IPv4 or IPv6 if necessary.

Configuring IP Settings in CentreWare Internet Services

If your printer has a valid network address, you can configure TCP/IP settings in CentreWare Internet Services.
Configuring IPv4
You can use IPv4 or IPv6 in addition to or in place of the other.
1. Under Protocol, select Enabled to enable the protocol.
2. Under IP Address Resolution select an option from the drop-down list. Depending on the option you
select, some or all of the fields can be disabled.
STATIC disables dynamic addressing and allows you to type a static IP address. Type the
Machine IP Address, Subnet Mask, and Gateway Address.
DHCP allows your DHCP server to assign an IP address to the printer. Dynamic DNS Registration
is enabled.
ColorQube 8700/8900 Color Multifunction Printer 29 System Administrator Guide
Page 30
Network Configuration
CAUTION: If both IPv4 and IPv6 are disabled, you cannot access CentreWare Internet Services. To
access IPv4 and IPv6 settings in CentreWare Internet Services, enable TCP/IP at the printer control panel. If you disable TCP/IP or change the IP address, any dependent protocols are disabled and the network controller restarts.
3. To send a release request to the DHCP and DNS servers, under Remove this Device's IPv4 DHCP
Lease and DNS Registration at power down, select Enabled. If the servers grant the request, the current IP address and any dynamic DNS name are released when the printer is turned off.
4. Under Zero-Configuration Networking, under Self Assigned Address, select Enabled. The Self
Assigned Address option instructs the printer to assign itself an address if a DHCP server does not provide one.
5. Click Apply to save the new settings or Undo to retain the previous settings.
6. Click Default All to reset settings to default values. This option also disables FIPS 140 mode.
Configuring Settings for IPv6
IPv6 hosts can automatically configure themselves when connected to a routed IPv6 network using the Internet Control Message Protocol Version 6 (ICMPv6). ICMPv6 performs error reporting for IP along with other diagnostic functions. When first connected to a network, a host sends a link-local multicast router solicitation request for configuration parameters. If suitably configured, routers respond to this request with a router advertisement packet containing network-layer configuration parameters.
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click IP > IPv6.
3. Under Protocol, select Enabled to enable the protocol.
To allow the router to assign address prefixes, under Stateless Addresses, enable Use Router Supplied Prefixes.
4. Under Default Dynamic Host Configuration Protocol (DHCP) Settings, select how DHCP operates for
IPv6. Options are:
Use DHCP as directed by a router Always enable DHCP for address assignment and other configuration data Always enable DHCP for other configuration data only Never use DHCP
5. To release the current DCHP-assigned address and any DNS name when the printer is turned off,
select Remove this Device's IPv6 DHCP Lease and DNS Registration at power down.
6. To specify an address manually, select Enable Manual Address. Select a Router Prefix from the
menu, or type a new router prefix and click Add.
7. To use an IPv6 address before using an IPv4 address, select Prefer IPv6 Address over IPv4.
8. Click Apply to save the new settings or Undo to retain the previous settings.
9. Click Default All to reset settings to default values.
30 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 31
Network Configuration
Note: If no host name, or a different host name appears under Verified Host Name, the host name did not
successfully register to the DNS server. Ensure that your network supports direct client DNS name registration, or configure your DHCP server to perform updates on behalf of the DHCP clients. Configure your DNS server to allow dynamic updates.
Note: If no domain name, or a different domain name appears, the domain name did not successfully
register to the DNS server. Ensure that your network supports direct client DNS name registration, or configure your DHCP server to perform updates on behalf of the DHCP clients. Configure your DNS server to allow dynamic updates.
Note: Manage host names in your DNS server manually.
DNS
Domain Name System (DNS) and Dynamic Domain Name System (DDNS) are systems that map host names to IP addresses.
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click IP (Internet Protocol) > DNS.
3. Under Requested Host Name, type a unique name for your printer. If the host name successfully
registers to the DNS server, the host name appears under Verified Host Name. The default host name is XRX_xxx, where xxx is the MAC address of the printer.
4. Under Domain Name, type the name of the domain to which the printer is connected. If the domain
name successfully registers to the DNS server, the domain name appears under Verified Domain Name.
5. If desired, under Dynamic DNS Registration of IPv4 Address, or Dynamic DNS Registration of IPv6
Address, select Enabled. This option allows your DDNS server to register the host name of the printer automatically. If you change the host name in CentreWare Internet Services, the registered host name is updated on your DDNS server. If your network does not support dynamic name addressing, clear the Enabled check box.
6. If needed, under Remove this Device's IPv4 DHCP Lease and DNS Registration at power down, select
Enabled. This option allows the printer to send a release request to the DHCP and DNS servers. If the servers grant the request, the current IP address and any dynamic DNS name are released when the printer is turned off.
7. Under Remove this Device's IPv6 DHCP Lease and DNS Registration at power down, select Enabled
as needed. This option allows the printer to release the current DCHP-assigned address and any DNS name when the printer is turned off.
8. To allow users to see and connect to the printer using Bonjour, under Multicast DNS Registration,
select Enabled.
9. If you have a DHCP server, and the printer recognizes your DNS server, the address appears under
DNS Server Addresses. If you want to use other DNS servers, type the IPv4 or IPv6 server address under Additional DNS Server Addresses.
ColorQube 8700/8900 Color Multifunction Printer 31 System Administrator Guide
Page 32
Network Configuration
10. Under DNS Connection Timeout, type the time in seconds that the printer waits if it fails to connect
to a DNS server. After the timeout period, the printer attempts to connect to any additional DNS servers.
11. If you have a DHCP server, recognized search domain names appear in a list under Domain Name
Search List. The list of domain names allows the DNS server to recognize unqualified host names. If you want the printer to search for other domain names, type the domain names under Additional Search Domains.
12. Under Append Device Domain, select Enabled to add the domain of the printer to the Domain
Name Search List.
13. To add the parent domains of the printer to the Domain Name Search List, under Append Parent
Domains, select Enabled.
14. Click Apply.
32 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 33
Network Configuration
Note: The maximum MTU for IP over Ethernet is 1500 bytes.
SLP
Printers use Service Location Protocol (SLP) to announce and look up services on a local network without prior configuration. When SLP is enabled, the printer becomes a Service Agent (SA) and announces its services to User Agents (UA) on the network using SLP.
Directory Agents (DA) are components that cache services. They are used in larger networks to reduce the amount of traffic. DAs are optional. If a DA is present, then User Agents (UAs) and System Agents (SAs) are required to use it instead of communicating directly with the printer.

Configuring SLP

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click SLP.
3. Under Protocol, select Enabled.
4. Under Directory Agent, type the IP address for the Directory Agent (DA), if one is used. This entry is
optional.
5. If you use scopes to group services, type in the Scope 1, 2, and 3 names. Printers cannot see services
that are in different scopes. Under Message Type, select Multicast to route multicast packets between subnets, or select Broadcast not to route packets between subnets.
6. Select the Multicast Radius value between 0–255. This value defines how many routers the multicast
packet can cross. The default value is 255.
7. Select a value for Maximum Transmission Unit (MTU) size between 484–32768 bytes. The default
value is 1400 bytes.
8. Click Apply to save the new settings or Undo to retain the previous settings.
9. Click Default All to reset settings to default values.
ColorQube 8700/8900 Color Multifunction Printer 33 System Administrator Guide
Page 34
Network Configuration
Note: Click Apply after enabling the protocols and before navigating to any other pages to ensure
that your settings are saved.

SNMP

Simple Network Management Protocol (SNMP) is a set of network protocols designed to allow you to manage and monitor devices on your network.
You can use the SNMP configuration pages in CentreWare Internet Services to:
Enable or disable Authentication Failure Generic Traps. Enable SNMPv3 to create an encrypted channel for secure printer management. Assign privacy, authentication protocols, and keys to Administrative and key user accounts. Assign read and write access to User accounts. Limit SNMP access to the printer using hosts.

Enabling SNMP

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click SNMP.
3. Select Enable SNMP v1/v2c Protocols to enable the protocol.
4. Select Enable SMNP v3 Protocols to enable the protocol.
5. Under Authentication Failure Generic Traps, select Enable to prompt the printer to generate a trap
for every SNMP request processed with an invalid community name.
6. Click Apply to save the new settings or Undo to retain the previous settings.
34 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 35
Network Configuration
CAUTION: Changes made to the GET or SET community names for this printer require corresponding
changes to GET or SET community names applications using SNMP.
Note: Use the Default TRAP Community Name to specify the default community name for all traps
generated by this printer. Individual Trap Community Names specified for each trap destination address can override the community name. Each Trap Community Name must be unique.

Configuring SNMPv1/v2c

SNMP version 1 (SNMPv1) is the initial implementation of the SNMP protocol. SNMPv1 operates over protocols such as User Datagram Protocol (UDP), IP, and Novell Internet Packet Exchange (IPX).
SNMPv2c includes improvements in performance, confidentiality, and manager-to-manager communications over SNMPv1, however it uses the simple-community based security scheme of SNMPv1.
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click SNMP.
3. Under SNMP Properties, click Edit SNMPv1/v2c Properties.
4. Type a name up to 256 characters for the GET Community Name or use the default value of public.
GET returns the password for the SNMP GET requests to the printer. Applications obtaining information from the printer using SNMP, such as CentreWare Internet Services, use this password.
5. Type a name up to 256 characters for the SET Community Name or use the default value of private.
SET returns the password for the SNMP SET requests to the printer. Applications that set information on the printer using SNMP use this password.
6. Type a name up to 256 characters for the default TRAP Community Name or use the default value
of SNMP_TRAP.
7. Click Save to apply the new settings or Undo to retain the previous settings.
Click Cancel to return to the previous page.

Configuring SNMPv3

SNMPv3 is the current standard version of SNMP defined by the Internet Engineering Task Force (IETF). It provides three important security features:
Message integrity to ensure that a packet has not been tampered with in transit Authentication to verify that the message is from a valid source Encryption of packets to prevent unauthorized access
Before you begin:
Ensure that Secure HTTP (SSL) is enabled. Ensure that a certificate is installed on the printer.
ColorQube 8700/8900 Color Multifunction Printer 35 System Administrator Guide
Page 36
Network Configuration
Note: The passwords must be at least 8 characters in length and can include any characters except
control characters.
Editing SNMPv3 Properties
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click SNMP.
3. Under SNMP Properties, click Edit SNMP v3 Properties.
4. Under Administrator Account, select Account Enabled to create the administrator account.
5. Type and confirm the Authentication Password. The Authentication Password is used to generate a
key used for authentication.
6. Type and confirm the Privacy Password. The Privacy Password is used for encryption of SNMPv3
data. The passphrase used to encrypt the data must match the passphrase on the Server.
7. Select the checkbox to save new password.
8. Under Print Drivers/Remote Clients Account, click Account Enabled. To reset the default password,
click Reset. This account allows Xerox® clients and drivers limited access to objects on the printer.
9. Click Save to apply the new settings or Undo to retain the previous settings.
10. Click Cancel to return to the previous page.

Configuring SNMP Advanced Settings

You can add, edit, or delete IP and IPX addresses for Network Management workstations that receive traps from the printer.
Configuring SNMP Advanced Settings
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click SNMP.
3. Click Advanced Settings.
4. To add an IP trap destination address, under Trap Destination Addresses, click Add IP Address.
5. To add an IPX trap destination address, under Trap Destination Addresses, click Add IPX Address.
6. To edit an address, next to the address click Edit.
7. To delete an address, select the check box next to the address and click Delete.
Adding or Editing an IP Trap Destination Address
1. On the Advanced Settings page, click Add IP Address, or select an existing address and click Edit.
2. Type the IP address of the host running the SNMP manager that receives traps.
3. Type the UDP Port Number. The default is 162 for traps.
4. Select the SNMP version based on what the system receiving traps supports.
5. Select the type of traps that the SNMP manager receives under Traps to be Received.
6. Click Save to apply the new settings or Undo to retain the previous settings.
7. Click Cancel to return to the previous page.
36 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 37
Network Configuration
Adding or Editing an IPX Trap Destination Address
1. On the Advanced Settings page, click Add IPX Address, or select an existing address and click Edit.
2. Type the 8-digit hexadecimal number that identifies the IPX External Network host configured to
receive the trap.
3. Type the 48-bit Physical MAC Address of the computer running the SMNP manager application
receiving the trap.
4. Type the IPX Socket Number of the computer running the SNMP manager application configured to
receive the packets. The default IPX Socket Number is 9010.
5. Select the SNMP Version.
6. Select the type of traps that the SNMP manager receives under Traps to be Received.
7. Click Save to apply the new settings or Undo to retain the previous settings.
8. Click Cancel to return to the previous page.
ColorQube 8700/8900 Color Multifunction Printer 37 System Administrator Guide
Page 38
Network Configuration

SSDP

Simple Service Discovery Protocol (SSDP) provides processes to allow network clients with little or no static configuration to discover network services. SSDP provides multicast discovery, server-based notification, and discovery routing options.
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click SSDP.
3. Under Protocol, select Enabled.
4. Under Cache Control, type a value between 1–43200 minutes. The default value is 1440 minutes.
5. Under Time to Live, type a number between 1–60 router hops for discovery advertisement. The
default number of hops is 4.
6. Click Apply to save the new settings or Undo to retain the previous settings.
Click Default All to reset settings to default values.
38 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 39
Network Configuration
Note: If DHCP is configured, WINS IP Addresses are overridden.

Microsoft Networking

When running WINS, the printer registers its IP address and NetBIOS Host Name with a WINS server. WINS allows the printer to communicate using host name only. Using Microsoft Networking removes significant overhead for systems administrators.

Configuring Microsoft Networking

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click Microsoft Networking.
3. Under Protocol, select Enabled to enable the protocol.
4. Type the name of the workgroup in the Workgroup field.
5. Type the host name used to provide shared access and authenticate interprocess communication in
the SMB Host Name field.
6. If desired, type a descriptive comment in the SMB Host Name Comment field.
7. Type the name of the share in the Share Name field.
8. If desired, type a descriptive comment in the Share Name Comment field.
9. Type the maximum number of connections allowed, between 1030, in Maximum Connections.
10. Type the desired number of seconds, between 1–32767, until the connection times out.

Configuring WINS

1. Under Server Information, select Enabled to enable the protocol.
2. Type the IP Address for your primary server.
3. If desired, type an IP Address for a secondary server.
4. Click Apply to save the new settings or Undo to retain the previous settings.
ColorQube 8700/8900 Color Multifunction Printer 39 System Administrator Guide
Page 40
Network Configuration

LPR/LPD

The Line Printer Daemon (LPD) and Line Printer Remote (LPR) protocols provide printer spooling and network print server functionality for UNIX-based systems, such as HP-UX, Linux, and Macintosh.
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click LPR/LPD.
3. Under Protocol, select Enable.
4. Type an LPR/LPD Port Number or use the default port number of 515.
5. Under Advanced Settings, select Enabled to allow PDL Switching. This option allows the printer to
process a single print job that contains two or more printer languages. An example is a PostScript print job with a PCL header.
6. Select Enabled to enable PDL banner page attributes override LPR control file attributes for job
name and owner. This feature allows you to replace the standard information displayed on a banner page with the user name and job name from the print job.
7. Select the desired option from the Place temporary hold on which jobs drop-down menu. Options
include:
None (Use printer's default banner sheet job name if data file 1st): The printer does not wait
to receive the job control information. This selection can cause banner page information to print incorrectly.
Only those with data file received 1st: The printer holds the job if the data file for the job is
received first. This option ensures that the printer waits to receive the control file information to print banner page details correctly.
All (consistent with older implementations): This option puts all jobs on hold. All data is
received before a job begins printing. This setting can cause jobs to print slowly but results in accurate banner page information.
8. Click Apply to save the new settings or Undo to retain the previous settings.
40 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 41
Network Configuration
Note: Enable TCP/IP before enabling Raw TCP/IP printing.

Raw TCP/IP Printing

Raw TCP/IP is used to open a TCP socket-level connection over Port 9100, and stream a print-ready file to the printer input buffer. It then closes the connection either after sensing an End Of Job character in the PDL or after expiration of a preset timeout value. Port 9100 does not require an LPR request from the computer or the use of an LPD running on the printer. Raw TCP/IP printing is selected in Windows as the Standard TCP/IP port.

Configuring Raw TCP/IP Settings

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click Raw TCP/IP Printing.
3. Select Enabled to enable the protocol.
4. Ensure that the TCP Port Number is set to 9100 for Port 1. If you want to emulate HP JetDirect EX
Plus 3, set Port 2 to 9101 and Port 3 to 9102.
5. Select Enabled for bidirectional communication.
6. Set the Maximum Connections per port between 1–32 for each port. The default port value is 32.
7. Set the End of Job Timeout to the desired number of seconds between 0–1800 before the job is
processed with an End of Job character. The default time is 300 seconds.
8. Select Enabled for PDL Switching to allow the printer to switch automatically between multiple
supported PDLs within a single job. PDL switching is normally disabled.
9. Click Apply to save the new settings or Undo to retain the previous settings.
Click Default All to reset settings to default values.

Configuring Raw TCP/IP Advanced Settings

Use this page to set additional Raw TCP/IP Printing options for Ports 1, 2, and 3.
To configure Advanced Settings:
1. Under Connections, set the following:
Set the Maximum Connections per port between 1–32. The default port value is 32. To allow concurrent jobs to process for each port connection, type a number between 0–500
jobs in each port. Type 0 to allow unlimited concurrent jobs.
To limit the number of jobs that are active for each port connection, type a number between
032768. Type 0 to allow unlimited number of active jobs.
2. Under Job Boundary Determination: Type the End of Job Timeout between 0–1800 seconds to specify the amount of time to pass
before a job processes with an End of Job character. The default time is 300 seconds. Type 0 to disable end of job detection by timeout.
ColorQube 8700/8900 Color Multifunction Printer 41 System Administrator Guide
Page 42
Network Configuration
Note: Out of Order Backchannel Data is only available when Backchannel Data Transmission to
Client is enabled.
Note: Job data is not parsed when bidirectional communication and PDL switching are disabled.
3. Under Backchannel Data:
Enable Backchannel Data Transmission to Client, then, enable Out of Order Backchannel
Data to allow data from several jobs to be interspersed.
4. Under Banner Page Printing: To restrict banner pages to print for specific jobs only, select the job types from the Banner Page
Enabled drop-down menu. Options are First Job Only, No Jobs, or All Jobs.
To enable banner pages to print before each PDL document within a single job, select Enabled
for Banner Page for Each Document of Job.
To restrict banner pages to print for jobs that specifically request them through PJL, select
Enabled for Banner Page for Job Containing only PJL Commands.
5. Miscellaneous To allow the printer to switch between multiple PDLs within a single job, select Enabled for
Language (PDL) Switching within PJL Job.
To force parsing of job data, select Enabled for Job Data Parsing Override.
6. Click Apply to save the new settings or Undo to retain the previous settings.
Click Default All to reset settings to default values.
42 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 43
Network Configuration

SMB Filing

You can specify Kerberos authentication options for features that file images to an SMB-shared network location.

Configuring Kerberos Authentication Options for SMB

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click SMB Filing.
3. Under With Kerberos Tickets, for Workflow Scanning, Server Fax, and Scan to Home features, select
an option:
Always File with Kerberos Ticket instructs the printer to attempt to use Kerberos
authentication to the SMB shared network location. Configure Network Authentication or Smart Card Authentication using a Kerberos server.
Prefer Filing with Kerberos Ticket instructs the printer to authenticate to the SMB shared
network location with a Kerberos ticket if available. If a Kerberos ticket is not available, or Kerberos authentication fails, the printer attempts to authenticate using other methods, such as NT, or NTLM.
Do Not File with Kerberos Ticket instructs the printer to attempt to authenticate to the SMB
shared network location using other methods, such as NT, or NTLM. Do not select this option when Smart Card authentication is enabled. If you select this option when Smart Card authentication is enabled, SMB file transmission fails, and an error message appears on the touch screen.
4. Under Without Kerberos Tickets, click the appropriate link to navigate to the configuration page for
features that use SMB as needed. Features listed use SMB, but cannot use Kerberos authentication. Disable these features or configure them to use a protocol other than SMB for FIPS 140 compliance.
5. Click Apply.
ColorQube 8700/8900 Color Multifunction Printer 43 System Administrator Guide
Page 44
Network Configuration
Note: If you select Use DNS to identify SMTP Server, ensure that DNS is configured for either IPv4 or
IPv6 before you define the SMTP server.

SMTP Server

Simple Mail Transfer Protocol (SMTP) is an Internet standard used to transmit email across IP networks. Your printer uses SMTP to transmit scanned images and Internet Fax jobs through email.

Configuring SMTP Server Settings

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click SMTP (Email).
3. Under Required Information, select the method the printer uses to locate an SMTP server.
To allow DNS to find an SMTP server on the network automatically, select Use DNS to identify
SMTP Server.
To map to a specific SMTP server, select Specify SMTP Server manually.
4. Select the address type. Options are IPv4 Address, IPv6 Address, or Host Name.
5. Type the appropriately formatted address and port number. The default port number is 25.
6. Under Multifunction Device Email Address, type the email address assigned to the printer by the
SMTP server.
7. Click Default All to reset settings to default values.
8. Click Apply to save the new settings or Undo to retain the previous settings.

Configuring SMTP Authentication Settings

1. On the SMTP (Email) page, click the SMTP Authentication tab.
2. Under SMTP Login credentials applied to email jobs sent from the machine's touch interface,
select an option:
None: The server does not require the printer to provide a user name or password. System: The printer uses the information provided in the Login Name and Password fields to
access the server.
Authenticated User: The printer uses the user name and password of the authenticated user to
access the server.
Prompt at User Interface requires users to type a login name and password at the control
panel.
3. Enable Select to save new password to update the password for an existing Login Name.
4. Under SMTP Login credentials for the machine to Access the SMTP Server to send automated
emails, select an option:
None: The server does not require the printer to provide a user name or password. System: The printer uses the information provided in the Login Name and Password fields to
access the server.
44 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 45
Network Configuration
Note: Passwords are saved within the template files. Enable User Data Encryption to encrypt stored
password data.
Note: If you are unsure what method your server supports, select STARTTTLS (if available). If you
select STARTTLS (if available),the printer attempts to use STARTTLS. If your server does not support STARTTLS, SMTP communication is not encrypted.
5. Enable Select to save new password to update the password for an existing Login Name.
6. Click Apply.

Configuring SMTP Connection Encryption Settings

1. On the SMTP (Email) page, click the Connection Encryption tab.
2. To encrypt SMTP communication, under Encryption mechanism used by the multifunction device
when communicating with the SMTP server, select a method that your server supports.
3. Click Apply.

Configuring SMTP File Size Management

1. On the SMTP (Email) page, click the File Size Management tab.
2. To define a maximum message size for messages with attachments, type a value between
51220480 KB in the Maximum Message Size field.
3. To improve transmission speed, set messages to fragment between 1–500 times.
4. To set a maximum job size, type a value between 5122000000 KB in the Total Job Size field.
5. If you selected more than 1 fragment in Number of Fragments, under Email Job Splitting Boundary,
select an option:
Page Boundary instructs the mail client not to reassemble the job on receipt. Automatic Boundary instructs the mail client to reassemble the job on receipt.
6. Click Apply.

Testing SMTP Configuration Settings

1. On the SMTP (Email) page, click the Test Configuration tab.
2. Under To Address, type an email address.
3. To send a test email to the address, click Send Email.
If the email transmission succeeds, a confirmation message appears. If the transmission fails, an error message appears.
ColorQube 8700/8900 Color Multifunction Printer 45 System Administrator Guide
Page 46
Network Configuration
This section includes:
Configuring LDAP Servers ............................................................................................................................................. 46
Configuring LDAP Server Optional Information .................................................................................................. 46
Configuring LDAP Contexts .......................................................................................................................................... 47
Configuring LDAP User Mappings ............................................................................................................................. 48
Configuring LDAP Custom Filters ............................................................................................................................... 48

LDAP

Lightweight Directory Access Protocol (LDAP) is a protocol used to process queries and updates to an LDAP information directory, on an external server. LDAP can also be used for network authentication and authorization. LDAP directories are heavily optimized for read performance. Use this page to define how the printer retrieves user information from an LDAP directory.
The LDAP Server page displays the current LDAP servers configured for your printer. You can configure a maximum of nine LDAP servers for your printer.
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click LDAP.
3. To add a new LDAP server, click Add New.
4. To edit an LDAP server, click Edit next to the server you want to edit.
5. To copy an LDAP Server configuration, click Copy From.
6. To delete all LDAP servers configured, click Delete All.

Configuring LDAP Servers

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click LDAP.
3. To add a new server, click Add New Server. To edit existing LDAP server settings, select the server
and click Edit.
4. Under Server Information, select the preferred address type. Options are IPv4, IPv6, or Host Name.
5. Type a Friendly Name for the LDAP Server.
6. Type the appropriately formatted address and port number. The default port number is 389.
7. Select the LDAP server type from the LDAP Server menu.
46 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 47
Network Configuration
Note: If the LDAP Server has encryption enabled, ensure that a certificate issued from the LDAP
server certificate authority is installed on the printer.
Note: If you are having trouble retrieving results from your LDAP server, use the Wait option.
Note: Contexts are only used if you configure LDAP server settings and select NDS as the server type.

Configuring LDAP Server Optional Information

1. Type the root path of the search directory in the Search Directory Root field using Base DN format.
For details on Base DN formatting, see the RFC 2849 - LDAP Data Interchange Format (LDIF) Technical Specification on the IETF website.
2. Specify the login credentials required to access the LDAP directory.
None instructs the printer to access the repository without providing credentials. Authenticated User instructs the printer to use the user name of the logged in user when
accessing the repository.
System instructs the printer to use specific credentials when accessing the repository. If you
select System, type the credentials in the User Name and Password fields. To update an existing password, select Select to save new password.
3. If SSL is desired, under SSL, select Enable SSL. a. To allow the printer to validate certificates, select Validate Repository SSL Certificate. b. Under Trusted SSL Certificates, select the certificate you want to use. c. To view the selected certificate details, or save the certificate to your computer, click View/Save.
4. Under Maximum Number of Search Results, to define the maximum number of addresses returned
that match search criteria, type a number from 5–100. The default number is 25. To use the maximum number of search results specified by the LDAP server, select Use LDAP Server Maximum.
5. To allow the printer use the LDAP server current settings, under Search Timeout, select Use LDAP
Server Timeout. To specify a time, select Wait, and type the number of seconds from 5–100 that the printer waits before timing out. The default is 30 seconds.
6. If your primary LDAP server is connected to additional servers, to include those LDAP servers in your
searches, select LDAP Referrals.
7. Under Perform Query on, select an option. Surname and Given Name Fields instructs the printer to query the configured surname and
given name fields.
Mapped Name Field instructs the printer to query the configured name field. After you apply
this setting, click User Mappings to define the field mapping.
8. Click Apply to save the new settings or Undo to retain the previous settings.

Configuring LDAP Contexts

Contexts are defined starting points in an LDAP database from which the search function begins searching. Contexts are used with the Authentication feature. You can configure the printer to add an authentication context automatically to the Login Name provided by the user.
ColorQube 8700/8900 Color Multifunction Printer 47 System Administrator Guide
Page 48
Network Configuration
Note: Internet Fax users must ensure that the Internet Fax field is not set to No Mappings Available
in the drop-down menu. This setting prevents the Network Address Book from displaying on the Internet Fax screen on the printer control panel. If your LDAP server does not contain a unique Internet Fax address field, it can be set to match the heading for email address.
Configuring Contexts for LDAP
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click LDAP.
3. Click Contexts at the top of the LDAP Server page.
4. Type details in the Default Login Context field.
5. Click Apply to save the new settings or Undo to retain the previous settings.

Configuring LDAP User Mappings

LDAP servers display different results depending on how they implement mappings. Use this page to map LDAP fields to fields on your printer. Editing current map settings allows you to fine-tune server search results.
Defining User Mappings
1. Click User Mappings at the top of the LDAP Server page.
2. Under Search, type the user name you want to search for in the Enter Name field, then click Search.
If a match occurs, the user information displays.
3. Click the drop-down menu under Imported Heading to remap fields as needed. The schema on the
LDAP server defines the headings.

Configuring LDAP Custom Filters

You can edit Custom Filters so that text strings typed at the control panel are changed to match the format required by the LDAP server.
There are three types of filters that you can customize:
LDAP Authentication Filter: Add text to the beginning of a User ID, or the Login Name configured
as the System Login Name for the Server.
Email Address Book Filter: Customize the standard filter that is used when a user types a name to
search in the Network Address Book.
User ID Query Filter: Customize the standard filter that the printer uses when searching for the
name of the logged in user. For example, when Remote Authorization is configured, and a user logs in at the control panel, the printer searches the authorization server using this filter. The standard filter looks in the field mapped as the Login Name field. If you are using an ADS LDAP server, this field is typically sAMAccountName. Do not use wildcard characters if you want a search for a specific person to return an exact match.
48 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 49
Network Configuration
Notes:
If Authenticated User is selected for Login Credentials to Access LDAP Server, some
UNIX/Linux LDAP servers can require setting the Prepend Domain Name attribute.
For more detail on Base DN formatting, refer to the RFC 2849 - LDAP Data Interchange Format
(LDIF) Technical Specification on the IETF website.
Configuring Custom Filters
1. Click Custom Filters at the top of the LDAP Server page.
2. To configure an LDAP Authentication filter, under LDAP Authentication, select Prepend Domain
Name. This setting prepends the base DN to a user Relative Distinguished Name (RDN) when authenticating the user. Use the Common Name (CN) attribute to specify USERID in the base DN.
3. To configure an LDAP Authentication filter, under Email Address Book Filter, select Enable Custom
Filter.
4. Type the LDAP search string or filter that you want to apply in the field. The filter defines a series of
conditions that the LDAP search must fulfill to return the desired information. For example, to find people only, type (ObjectClass=Person)&(cn=LDAP*).
5. To configure an LDAP Authentication filter, under User ID Query Filter, select Enable Custom Filter.
6. Type the LDAP search string or filter that you want to apply, where LDAP represents the string
provided for the query. The filter defines a series of conditions that the LDAP search must fulfill to return the desired information. For example, to find the user with an sAMAccountName of Bob, type (objectClass=user) (sAMAccountName=Bob).
7. Click Apply to save the new settings or Undo to retain the previous settings.
ColorQube 8700/8900 Color Multifunction Printer 49 System Administrator Guide
Page 50
Network Configuration
Note: Increasing the Keep Alive Timeout can cause connections to slow down.

HTTP

Hypertext Transfer Protocol (HTTP) is a request-response standard protocol between clients and servers. Clients that make HTTP requests are called User Agents (UAs). Servers that respond to these requests for resources, such as HTML pages, are called Origin Servers. There can be any number of intermediaries, such as tunnels, proxies, or gateways between User Agents and Origin Servers.

Enabling HTTP at the Control Panel

1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Network Settings > Advanced Settings.
3. Touch Continue.
4. Touch HTTP Settings.
5. Touch Enable, then touch Save.

Configuring HTTP Settings in CentreWare Internet Services

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click HTTP.
3. Under Configuration, select Enabled to enable the protocol.
4. Change the HTTP Port Number if needed. The default is 80.
5. In Keep Alive Timeout, type the time between 1–60 seconds that the printer waits for a response
from a connected user before terminating the connection. The default time is 15 seconds.
6. To encrypt HTTP communication using SSL, under Secure HTTPS, select Enabled. When SSL is
enabled, all Web pages contain https:// in the URL.
a. From the Choose Device Certificate menu, select the Device Certificate to use for SSL. b. To view the selected certificate details, or save the certificate to your computer, click View/Save. c. If you are using the Default Xerox
Trusted CA Certificate in your Web browser. Installing the Generic Xerox® Trusted CA Certificate ensures that your browser trusts the printer. To download the certificate, click Download the Generic Xerox Trusted CA Certificate.
7. If necessary, change the Secure HTTP Port Number. The default is 443.
8. Click Apply to save the new settings or Undo to retain the previous settings.
9. Click Default All to reset settings to default values.
®
Device Certificate, you can install the Generic Xerox®
50 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 51
Network Configuration

HTTP Web Services

Web services are discoverable XML-based application components that communicate using open protocols. You can enable or disable Web Services on the Web Services page. This page provides a list of all available Web services on your printer, and displays the configuration status of each service.
Services are grouped into the following categories:
Device Discovery Remote System Management Copy Services Print Services Scan Services Job Management Hardware Authentication and Accounting Security
For details, see the Help in CentreWare Internet Services.
Selecting Web Services for HTTP
1. To enable or disable individual services, select the check box next to one or more services. To enable
or disable all services at one time, click Enable All or Disable All.
2. If additional settings are required for a selected service, the status column indicates the required
update and a Settings button appears. Click Settings to configure the service.
3. Click Apply to save the new settings or Undo to retain the previous settings.

HTTP Advanced Settings

The Advanced Web Services page displays all services currently enabled on the printer and their port numbers.
To remove all login restrictions for web services on the printer, under Web Services IP Lockout, click Clear Lockout.
ColorQube 8700/8900 Color Multifunction Printer 51 System Administrator Guide
Page 52
Network Configuration

POP3

Post Office Protocol, version 3 (POP3) is a protocol that allows email clients to retrieve email from remote servers over TCP/IP on network port 110. This printer uses POP3 for the Internet Fax and email features to retrieve fax jobs over email. POP3 is not compatible with IPv6.
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click POP3 Setup.
3. Under Server Information, select either IPv4 or Host Name for the address type.
4. Under POP3 Server, type the appropriately formatted address and port number. The default port
number is 110.
5. Type the Login Name assigned to the printer used to log in to the POP3 server.
6. Type then retype an alphanumeric Password.
7. Enable Select to save new password.
8. Under POP3 Settings, select Enable receipt of Email via POP3.
9. Type a Polling Interval value between 1–60 minutes. The default value is 15 minutes.
10. Click Apply to save the new settings or Undo to retain the previous settings.
52 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 53
Network Configuration

Proxy Server

A proxy server acts as a go-between for clients seeking services and servers that provide them. The proxy server filters client requests and if the requests meet the proxy server filtering rules, it grants the request and allows the connection.
A proxy server has two main purposes:
To keep any devices behind it anonymous for security purposes. To cache content from resources, such as Web pages from a Web server, to increase resource

Configuring the Proxy Server

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click Proxy Server.
3. Under HTTP Proxy Server, select Enabled.
4. Select the Proxy Server address type. Options are IPv4 Address, IPv6 Address, or Host Name.
5. Type the appropriately formatted address and port number. The default port number is 8080.
6. Click Apply to save the new settings or Undo to retain the previous settings.
access time.
ColorQube 8700/8900 Color Multifunction Printer 53 System Administrator Guide
Page 54
Network Configuration
Note: Restart your printer for the new settings to take effect.
NTP
The Network Time Protocol (NTP) synchronizes the internal clocks of computers over a network connection at system startup and every subsequent 24-hour period thereafter. If your printer uses DHCP and an NTP server, or if a DHCP server provides Greenwich Mean Time (GMT) offset, these settings are ignored.
1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click NTP.
3. Under Network Time Protocol, select Enabled to enable the protocol.
4. Select the address type. Options are IPv4 Address or Host Name.
5. Type the appropriately formatted address and port numbers for IP Address: Port and Alternate IP
Address: Port. The default port number is 123.
6. Click Apply to save the new settings or Undo to retain the previous settings.
54 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 55
Network Configuration
WSD
Web Services for Devices (WSD) is technology from Microsoft that provides a standard method for discovering and using network connected devices. It is supported in Windows Vista and Windows Server 2008 operating systems. WSD is one of several supported communication protocols.

Enabling WSD

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click WSD.
3. Under WSD Services, select Enabled.
ColorQube 8700/8900 Color Multifunction Printer 55 System Administrator Guide
Page 56
Network Configuration
See also:
NetWare on page 25.
Notes:
Some printers do not support this function. If the printer is using an IPv6 Link-Local address, enabling the IPv6 ND multicast filter brings
the printer out of sleep mode.

Sleep Mode Network Settings

You can allow the printer to poll Novell print queues and broadcast Service Advertising Protocol (SAP) during sleep mode.

Configuring Sleep Mode Settings

1. In CentreWare Internet Services, click Properties > General Setup.
2. Click Sleep Mode Settings.
3. To allow the printer to poll Novell print queues, select Resume Network Controller Briefly to Poll
Novell Print Queues During Sleep Mode.
4. Type the time in seconds to define the interval the printer uses to come out of Sleep Mode.
5. To allow the printer to broadcast SAP during sleep mode, select Resume Network Controller Briefly
to Broadcast Service Advertising Protocol (SAP) During Sleep Mode.
6. Type the time in seconds to define the interval the printer uses to come out of Sleep Mode.
7. Click Apply to save the new settings or Undo to retain the previous settings.

Sleep Mode Network Settings Advanced

You can allow the printer to respond to four types of broadcast packets during sleep mode.
Configuring Advanced Sleep Mode Settings
1. In CentreWare Internet Services, click Properties > General Setup.
2. Click Sleep Mode Settings > Advanced Settings.
3. In the Packet Priority list, click the Increase Priority and Decrease Priority buttons to prioritize the
packet types.
4. Click Apply to save the priority list.
The printer processes the list and displays the top four packet types if the corresponding protocols have been enabled. Packet types that do not have the corresponding protocol enabled are skipped.
5. Click Return to return to the Sleep Mode Settings page.
56 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 57
This chapter includes:
Setting Access Rights ...................................................................................................................................................... 58
Configuring Authentication Settings ........................................................................................................................ 60
Configuring Authorization Settings .......................................................................................................................... 68
Secure HTTP (SSL) ............................................................................................................................................................ 75
FIPS 140-2 .......................................................................................................................................................................... 76
Stored Data Encryption ................................................................................................................................................. 78
IP Filtering .......................................................................................................................................................................... 79
Audit Log ............................................................................................................................................................................. 81
IPsec ...................................................................................................................................................................................... 83
Security Certificates ........................................................................................................................................................ 88
802.1X .................................................................................................................................................................................. 93
System Timeout ................................................................................................................................................................ 96
Overwriting Image Data ............................................................................................................................................... 97
PostScript Passwords .................................................................................................................................................... 101
USB Port Security ........................................................................................................................................................... 102
Displaying or Hiding Network Settings on the Control Panel ........................................................................ 103
Hiding User Names on the Control Panel ............................................................................................................. 104
Verifying the Software ................................................................................................................................................. 105
See also:
www.xerox.com/security
4

Security

ColorQube 8700/8900 Color Multifunction Printer 57 System Administrator Guide
Page 58
Security

Setting Access Rights

You can control access to services and features by setting up authentication and authorization. Personalization allows the printer to retrieve user information to customize features.

Authentication

Authentication is the process of confirming your identity. When the system administrator enables authentication, the printer compares the information that you provide to another source of information, such as an LDAP directory. The information can be a user name and password, or the information stored on a magnetic or proximity ID card. If the information is valid, you are considered an authenticated user.
The system administrator can set permissions so that authentication is required when accessing features at the control panel, in CentreWare Internet Services, or in the print driver.
There are several ways to authenticate a user:
Local: When you configure local authentication, users prove their identity by typing a user name and
password at the control panel or in CentreWare Internet Services. The printer compares the user credentials to the information stored in the User Database. If you have a limited number of users, or do not have access to an authentication server, use this authentication method.
Network: When you configure network authentication, users prove their identity by typing a user
name and password at the control panel or in CentreWare Internet Services. The printer compares the user credentials to the information stored on an authentication server.
The printer can use one of the following protocols to communicate with your authentication server:
Kerberos (Solaris) Kerberos (Windows 2000/2003) NDS SMB (Windows 2000/2003) LDAP
Card Reader:
When Xerox Secure Access authentication is configured, users swipe a pre-programmed
identification card at the control panel. The printer compares the user credentials to the information stored on the Xerox Secure Access server. To use Xerox Secure Access, purchase and install the Xerox Secure Access Unified ID System®.
When Smart Card authentication is configured, users swipe a pre-programmed identification
card at the control panel. Purchase and install a Smart Card reading system before configuring Smart Card authentication.
58 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 59
Security

Authorization

Authorization is the function of specifying the features that you are allowed to access, and the process of approving or disapproving your access. The system administrator can configure the printer to allow you to access to the printer, but restrict your access to certain features, tools, and services. For example, the printer can allow you access to copying but restrict your access to color printing. The system administrator can also control your access to features at specific times during the day. For example, the system administrator can restrict a group of users from printing during peak business hours.
There are two types of authorization:
Local Authorization verifies user information on the printer to approve access. Network Authorization verifies user information stored externally in a network database, such as an
LDAP directory, to approve access.

Personalization

Personalization is the process of customizing services for a specific user. The printer searches an LDAP directory for the home directory and email address of a user when using Scan to Home, or Email Scanning features.

Setting the Authentication Method and the Authorization Method

1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click Login Methods.
3. Click Edit.
4. To set the control panel login authentication method, under Authentication method on the
machine's touch interface, select an option.
5. The first time you select Smart Cards as the authentication method, you are prompted for a Feature
Enablement key. Type the Feature Enablement Key that is included in the Common Access Card Enablement Kit, and click Next twice to confirm.
6. If you selected Smart Cards as the authentication method, you can also allow users to log in at the
control panel. This option is useful if a user loses their smart card, but must access the printer. Under
Alternate authentication method on the machine's touch interface, select User Name / Password Validated Remotely on the Network.
7. To set the authentication method for logging in to CentreWare Internet Services, under
Authentication method on the machine's web interface, select an option.
8. To set the authorization method, under Authorization information is stored, select an option.
9. To retrieve the home directory and email address of a user when using Scan to Home, or Email
Scanning features, under Personalize the machine's touch interface, select Automatically retrieve the following information for the authenticated user from LDAP.
10. Click Save.
ColorQube 8700/8900 Color Multifunction Printer 59 System Administrator Guide
Page 60
Security
Note: User names and passwords stored in the User Database are not transmitted over the network.
Note: The Password field only appears if the selected authentication method is local authentication.

Configuring Authentication Settings

Configuring Local Authentication Settings

When you configure local authentication, users prove their identity by typing a user name and password at the control panel or in CentreWare Internet Services. The printer compares the user credentials to the information stored in the User Database. If you have a limited number of users, or do not have access to an authentication server, use this authentication method.
To configure access rights using local authentication:
Add user information to the user information database. Configure Authorization settings. If you enabled Personalization, configure LDAP server settings.
The Xerox Access Setup page in CentreWare Internet Services provides links to authentication, authorization, and personalization configuration settings.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click Login Methods.
User Database
The User Database stores user credential information. The printer uses this information for local authentication and authorization, and for <CompanyNameRTM> Standard Accounting. When you configure local authentication, the printer checks the credentials that a user provides against the information in the User Database. When you configure local authorization, the printer checks the User Database to determine which features the user is allowed to access.
Adding User Information to the User Database
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click Device User Database.
3. Click Add New User.
4. Type a User Name and Friendly Name for the user.
5. Type a Password for the user, then retype it to verify.
6. To add the user to a role, select the check box next to the role: Accounting Administrator allows the user to access accounting settings and other services and
settings that are locked.
The System Administrator role allows the user to access all services and settings.
If you have created any user roles, they also appear in the list.
60 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 61
Security
Note: New password rules do not affect existing passwords.
7. Click Save to apply the new settings or Cancel to return to the previous screen.
Editing User Information
1. To edit information about the user, on the Device User Database page, next to a user name, click
Edit.
2. Update the user information.
3. Click Save.
Specifying Password Requirements
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click Device User Database.
3. Click Password Settings.
4. Specify the password Minimum Length and Maximum Length.
5. Select rules as desired:
Cannot contain Friendly Name Cannot contain User Name Must contain at least 1 number
6. Click Apply to save the new settings or Undo to retain the previous settings.

Configuring Network Authentication Settings

When you configure network authentication, users prove their identity by typing a user name and password at the control panel or in CentreWare Internet Services. The printer compares the user credentials to the information stored on an authentication server.
To configure access rights using network authentication:
Provide information about your authentication server and configure Authentication Server settings. Configure Authorization settings. If you enabled Personalization, configure LDAP server settings.
The Xerox Access Setup page in CentreWare Internet Services provides links to authentication, authorization, and personalization configuration settings.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click Login Methods.
ColorQube 8700/8900 Color Multifunction Printer 61 System Administrator Guide
Page 62
Security
Note: A backup address is optional.
Note: A backup address is optional.
Configuring Authentication Server Settings for Kerberos (Solaris)
1. On the Xerox
2. Under Authentication Type, select Kerberos (Solaris).
3. Click Add New.
4. Under Server Information, in the Realm field, type the realm for your authentication server.
5. Select the desired address type. Options are IPv4 Address, IPv6 Address, or Host Name.
6. Type the appropriately formatted address and port numbers for both the primary and backup
addresses. The default port number is 88.
7. If you want to use an LDAP server for Network Authorization or Personalization: a. Click Add LDAP Mapping. b. Select the LDAP server from the list and click Add Mapping, or click Add New to add a new
LDAP server.
8. Click Save Server.
9. To specify server settings for an alternate authentication server, click Add New.
10. To copy the settings from another server, select a server from the list and click Copy From.
11. Click Edit to update the settings.
®
Access Setup page, click Edit next to Authentication Servers.
Configuring Authentication Server Settings for Kerberos (Windows 2000/2003)
1. On the Xerox
2. Under Authentication Type, select Kerberos (Windows 2000/2003).
3. Click Add New.
4. Under Server Information, in the Realm field, type the realm for your authentication server.
5. Select the desired address type. Options are IPv4 Address, IPv6 Address, or Host Name.
6. Type the appropriately formatted address and port numbers for both the primary and backup
addresses. The default port number is 88.
7. If you want to use an LDAP server for Network Authorization or Personalization: a. Click Add LDAP Mapping. b. Select the LDAP server from the list and click Add Mapping, or click Add New to add a new
LDAP server.I
8. Click Save Server.
9. To specify server settings for an alternate authentication server, click Add New.
10. To copy the settings from another server, select a server from the list and click Copy From.
11. Click Edit to update the settings.
®
Access Setup page, click Edit next to Authentication Servers.
62 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 63
Security
Configuring Authentication Server Settings for NDS (Novell)
Before you begin:
Enable and configure Netware settings. For details, see NetWare on page 25.
1. On the Xerox
®
Access Setup page, click Edit next to Authentication Servers.
2. Under Authentication Type, select NDS (Novell).
3. Click Add New.
4. Under Default Tree/Context, type the details in the Tree and Context fields.
5. Click Save Server.
6. To specify server settings for an alternate authentication server, click Add New.
7. To copy the settings from another server, select a server from the list and click Copy From.
8. Click Edit to update the settings.
Configuring Authentication Server Settings for SMB
1. On the Xerox
2. Under Authentication Type, select SMB (Windows NT 4) or SMB (Windows 2000/2003).
3. Click Add New.
4. Under Domain, type the domain name of your authentication server.
5. If you want to specify domain controller IP addresses or host names, select Optional Information.
Address options appear.
6. Select the address type. Options are IPv4 Address, or Host Name.
7. Type the appropriately formatted address and port number. The default port number is 137.
8. Click Save Server.
9. To specify server settings for an alternate authentication server, click Add New.
10. To copy the settings from another server, select a server from the list and click Copy From.
11. Click Edit to update the settings.
®
Access Setup page, click Edit next to Authentication Servers.
Configuring Authentication Server Settings for LDAP
1. On the Xerox
2. Under Authentication Type, select LDAP.
3. Click Add New.
4. Configure LDAP server settings and click Apply.
5. To configure LDAP settings for a previously added LDAP server, click Edit next to the LDAP server in
the list. A book icon appears in the list next to the LDAP server that is used for Network Address Book queries.
6. To specify server settings for an alternate authentication server, click Add New.
7. To copy the settings from another server, select a server from the list and click Copy From.
8. Click Edit to update the settings.
ColorQube 8700/8900 Color Multifunction Printer 63 System Administrator Guide
®
Access Setup page, click Edit next to Authentication Servers.
Page 64
Security
Note: Xerox recommends that you enable NTP to ensure time synchronization.

Configuring Smart Card Authentication Settings

When Smart Card authentication is configured, users swipe a pre-programmed identification card at the control panel. Purchase and install a Smart Card reading system before configuring Smart Card authentication.
To configure access rights using Smart Card authentication:
Provide information about your domain controller servers and configure Domain Controller and NTP
settings.
If you want to validate certificates, configure Certificate Validation options and provide information
about your OCSP server.
If needed, configure Smart Card Inactivity Timer settings. If needed, specify the method the printer uses to acquire the email address of a user by configuring
email Smart Card Policies.
If you want a custom image to appear at the control panel, import your image. Configure Authorization settings. If you enabled Personalization, configure LDAP server settings.
The Xerox Access Setup page in CentreWare Internet Services provides links to authentication, authorization, and personalization configuration settings.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click Login Methods.
Setting Up Authentication for a Smart Card System
Configuring Domain Controller Settings
1. On the Xerox
controller server must validate the domain certificate on the smart card of the user before the user can access the printer.
2. Click Add Domain Controller.
3. If you are using a windows-based domain controller, under Domain Controller Type, select Windows
Based Domain Controller.
4. Type the domain controller server address information.
5. Click Save to apply the new settings or Cancel to return to the previous screen.
6. To change the search priority of the domain controller, click Change Domain Priority. a. To change the priority of the server, select a server in the list and click the arrows. b. Click Close.
7. To configure NTP settings, under Action, next to NTP, click Edit. Synchronize the domain controller
time with the time set on the printer.
®
Access Setup page, under Action, next to Domain Controller(s), click Edit. The domain
8. To return to the Xerox
64 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
®
Access Setup page, click Close.
Page 65
Security
Configuring OCSP Validation Server Settings
If you have an OCSP server, or an OCSP certificate validation service, you can configure the printer to validate certificates installed on the domain controller.
1. On the Xerox
®
Access Setup page, under Action, next to Certificate Validation, click Edit.
2. Select a validation method and click Next.
3. On the Required Settings page, type the URL of the OCSP server.
4. To ensure that the printer can communicate with the OCSP server and the domain controller,
configure your proxy server settings as needed.
5. For each domain controller listed, under Domain Controller Certificate, select the corresponding
domain controller certificate from the menu. If there are no certificates installed, click Install Missing Certificate.
6. Click Save to apply the new settings and return to the Xerox
Click Cancel to return to the Xerox® Access Setup page.
®
Access Setup page.
Setting the Inactive Time Limit
1. On the Xerox
2. Specify the maximum amount of time before a user is logged out automatically. Type the time in
minutes.
3. Click Save to apply the new settings and return to the Xerox
Click Cancel to return to the Xerox® Access Setup page.
®
Access Setup page, under Action, next to Smart Card Inactivity Timer, click Edit.
®
Access Setup page.
Specifying the Method the Printer Uses to Acquire Email Address of Users
1. On the Xerox Access Setup page, under Action, next to Acquiring Logged in User's Email Address,
click Edit.
2. Under Acquire logged in user's email address from, select an option: Auto instructs the printer to attempt to acquire the email address of the user from the Smart
Card. If an email address is not associated with the Smart Card, the printer searches the Network Address Book. If an email address is not found, the printer uses the email address specified in the From Field. Edit From Field settings on the Required Settings tab of the Email Setup page.
Only Smart Card instructs the printer to acquire the email address of the user from the Smart
Card.
Only Network Address Book (LDAP) instructs the printer to search the Network Address Book to
acquire the email address of the user.
3. To configure LDAP server settings, under Server Configuration, next to Network Address Book (LDAP),
click Edit.
4. To enable or disable Personalization, under Feature Enablement, next to Acquire Email from Network
Address Book, click Enable Personalization or Disable Personalization.
5. Click Apply.
ColorQube 8700/8900 Color Multifunction Printer 65 System Administrator Guide
Page 66
Security
Note: Accounts created on the XeroxSecure Access server must match accounts stored in the printer
local database or in another network authentication server.
Displaying Your Company Logo on the Blocking Screen
You can customize the blocking screen to display your company logo. The blocking screen appears on the printer touch screen when card reader authentication or an auxiliary accounting device is configured. The screen displays a message when a user attempts to access a restricted feature, reminding users to swipe an identification card to access the feature.
1. On the Xerox Access Setup page, under Action, next to Import Customer Logo, click Edit.
2. Click Browse or Choose File.
3. Select a .png file that is not larger than 300 x 200 pixels, and click Open.
4. Click Import.
5. Click Reboot Machine.

Configuring Xerox Secure Access Unified ID System Authentication Settings

When Xerox Secure Access authentication is configured, users swipe a pre-programmed identification card at the control panel. The printer compares the user credentials to the information stored on the Xerox Secure Access server. To use Xerox Secure Access, purchase and install the Xerox Secure Access Unified ID System.
To configure access rights using Xerox Secure Access Unified ID System authentication:
Install the Xerox Secure Access authentication server software and configure it with user accounts.
For details, see the Xerox Secure Access Unified ID System documentation.
Enable the Authentication and Accounting Configuration Web service. For details, see HTTP on page
50.
Format and configure identification cards. Connect your card reader to the USB Port. Configure Xerox Secure Access Setup settings. Enable Secure HTTP (SSL). For details, see HTTP on page 50. Enable the Xerox Secure Access Web service. For details, see HTTP on page 50. Configure Authorization settings. If you enabled Personalization, configure LDAP server settings.
The Xerox Access Setup page in CentreWare Internet Services provides links to authentication, authorization, and personalization configuration settings.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click Login Methods.
66 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 67
Security
Note: If the Title and Prompt are configured on the Xerox® Partner authentication server, then any
instructional text that you type is ignored.
Configuring Xerox Secure Access
1. On the Xerox Access Setup page, under Action, next to Xerox Secure Access Setup, click Edit.
2. Configure the remote server. For details, see the instructions provided with your server hardware.
Once the server is configured, it communicates with the printer and automatically completes the configuration process.
3. To configure communication manually, personalize instructional windows, and review accounting
options, click Manually Configure.
4. To return to the Xerox Access Setup page, click Pending Remote Server Setup.
5. To configure any settings that are marked in red text as Required; Not Configured, in the table at
the bottom of the page, click Edit.
Manually Configuring Xerox® Secure Access Settings
If you are using Xerox® Secure Access for authentication, you can manually configure remote server communication, personalize instructional windows, or review accounting options.
Before you begin:
Configure the Xerox® Secure Access authentication server.
1. On the Xerox
®
Access Setup page, click Edit next to Xerox® Secure Access Setup.
2. Click Manually Configure.
3. Under Server Communication, select the address type and port number. Options are IPv4 Address or
Host name.
4. Type the appropriately formatted address and port number. The default port number is 443.
5. In the Path field, type the HTTP path public/dce/xeroxvalidation/convauth.
6. Under Device Log In Methods, select an option:
Xerox Xerox
®
Secure Access Device Only allows users to access the printer only using the card reader.
®
Secure Access Device + alternate on-screen authentication method allows users to
access the printer by logging in at the control panel.
7. When Network Accounting is configured, the printer can obtain user accounting information from
the Authentication server. Select Automatically apply Accounting Codes from the server to reduce the number of screens that appear when a user logs in at the control panel.
If you want users to provide an accounting code at the control panel, select User must manually enter accounting codes at the device.
8. Create login instructions for users by typing text in the fields under Device Instructional Blocking
Window.
a. In the Window Title field, type text that appears as a title at the top of the touch screen. b. In the Instructional Text field, type instructions that appear below the title.
9. Click Save to apply the new settings or Undo to retain the previous settings.
ColorQube 8700/8900 Color Multifunction Printer 67 System Administrator Guide
Page 68
Security

Configuring Authorization Settings

Configuring Local Authorization Settings

When you configure local authorization, the printer references the User Database for authorization information for the authenticated user.
To configure local authorization:
Add user information to the user information database. Configure User Permissions.
The Xerox Access Setup page in CentreWare Internet Services provides links to authentication, authorization, and personalization configuration settings.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click Login Methods.

Configuring Network Authorization Settings

When you configure network authorization, the printer references an authorization server for authorization information for the authenticated user.
To configure network authorization:
Provide information about your authorization server and configure Authorization Server settings. Configure User Permissions.
The Xerox Access Setup page in CentreWare Internet Services provides links to authentication, authorization, and personalization configuration settings.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click Login Methods.
Configuring Network Authorization Server Settings
1. On the Xerox Access Setup page, under Action, next to Authorization Server, click Edit.
2. Under Authorization Configuration, select SMB or LDAP.
3. If you select LDAP, under Configuration click the link to open the configuration page for LDAP
Servers.
4. If you select SMB: a. Under Configuration, type the Default Domain. b. Select the address type. Options are IPv4 or Host Name.
68 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 69
Security
c. Type the appropriately formatted address and port number. The default port number is 137. d. Under Login Credentials to Access SMB Server, select an option:
None: The server does not require the printer to provide a user name or password. Authenticated User: The printer uses the user name and password of the authenticated
user to access the server.
System: The printer uses the information provided in the Login Name and Password fields
to access the server.
e. If you select System, type the Login Name and Password used to access the server. Type the
password, then type the password again to verify.
f. Enable Select to save new password to update the password for an existing Login Name.
5. Click Apply.

User Permissions

You can control access to service and tools, and printing times and methods for a group of users.
Print permissions are rules that allow you to control printing times and methods for a group of users. You can:
Restrict color printing, requiring users to print in black and white. Restrict 1-sided printing, requiring users to print 2-sided. Restrict a Job Type, such as Secure Print. Restrict access to specific paper trays. Specify the software applications from which users are allowed to print. Restrict printing, color printing, and 1-sided printing from specific software applications.
Services and Tools permissions are rules that allow you to control access to features or configuration settings for a group of users. Configure Services and Tools Permissions to:
Restrict access to specific services, such as Copy, Email, or Fax. Restrict access to settings managed on the Tools menu at the control panel. Restrict access to settings managed on the Properties tab in CentreWare Internet Services.
User Roles
A role is a set of permissions associated with a group of users. To edit permissions for a group of users, you edit permissions for a role.
There are two types of roles:
The Non-Logged In Users Role applies to any user who accesses the printer, but is not
authenticated. This role also applies to anyone who sends a job that is not associated with a user name or Job Owner. Examples are a job sent using LPR, or a job sent from a mainframe application.
Logged In Users Roles are roles that you create. These roles apply to authenticated users only. You
can assign users from the User Database to the role, or you can create a role that applies to all authenticated users.
ColorQube 8700/8900 Color Multifunction Printer 69 System Administrator Guide
Page 70
Security
Editing Print Permissions for the Non-Logged In Users Role
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click User Permissions.
3. Under Action, next to User Permission Roles, click Edit.
4. Click the Non-Logged In Users tab.
5. Under Actions, click Edit.
6. Click the Print tab.
7. To edit print permissions, next to a print setting that you want to restrict, click Edit.
Setting Black and White and Color Print Permissions
1. On the When Users Can Print page, select:
Always to allow printing at all times. Monday - Friday from to allow printing on weekdays. Select when users are allowed to print
from the From Time and To Time menus.
Time of Day (Advanced) to allow printing on specific days during a specific time range. Select
the From Time and To Time, and click Add Time Range next to the day. Click the trash can icon to delete.
Never to restrict printing at all times.
2. Select Make color printing more restrictive than black & white printing to specify permissions for
Color and Black & White printing independently.
3. Click Save.
Setting 1-Sided Print Permissions
1. On the 1-Sided Printing page, under Role State, select Not Allowed to require users to print 2-sided.
2. Click Save.
Setting Job Type Print Permissions
1. On the Job Types page, under Presets, select one of the following options:
Allow all Job Types allows users to print any job type. Only Allow Secure Print ensures that users only send Secure Print jobs. Custom allows you to select the job types that users are allowed to send.
2. If you selected Custom, under Role State, next to each job type, select Not Allowed to restrict users
from using the job type.
3. Click the Lock icon to lock all job types or click the Unlock icon to unlock all job types.
4. Click Save.
Setting Paper Tray Print Permissions
1. On the Paper Trays page, under Role State, next to each tray, select Not Allowed to restrict users
from using the tray.
2. Click the Lock icon to lock all trays or click the Unlock icon to unlock all trays.
3. Click Save.
70 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 71
Security
Setting Application Print Permissions
1. On the Applications page, click Add New Application.
2. Under Application List, select an application.
3. Under Role State, next to Printing, Color Printing, or 1-Sided Printing, select Not Allowed to restrict
users from using the printing method.
4. Click Save to apply the new settings or Cancel to return to the previous screen.
Managing the List of Applications
Application Manager allows you to associate Application IDs with an Application Group. Application Group Names for common application types appear in the table at the bottom of the Application Manager page. The associated Application IDs appear next to each of the Application Group Names. An Application ID identifies the application from which the job was sent. To control print permissions for an application, the Application ID of the application must be associated with an Application Group Name. If you send a job from an application that is not in the default list, a new Application ID appears in the Custom Application ID list.
1. On the Applications page, click Application Manager.
2. To associate a custom Application ID with an existing Application Group, under Actions, click Merge
With.
a. Under Merge With the Application Group, select an application from the menu. b. Click Save.
3. To create a new Application Group, under Actions, click Make This A Group. a. Under Application Group Name, type a name for the group. b. Click Save.
4. To delete a custom Application ID, under Actions, click Delete.
5. To delete or disassociate a custom Application ID from an Application Group Name, under Actions,
click Manage next to an Application Group Name.
a. Click Un-Merge to disassociate the Application ID, or click Delete to delete the Application ID. b. Click Close.
6. To create a custom Application ID, click Add Manually. a. Under Application ID, type an Application ID. b. Click Save.
7. Click Close to return to the Applications page.
ColorQube 8700/8900 Color Multifunction Printer 71 System Administrator Guide
Page 72
Security
Editing Services and Tools Permissions for the Non-Logged In Users Role
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click User Permissions.
3. Under Action, next to User Permission Roles, click Edit.
4. Click the Non-Logged In Users tab.
5. Under Actions, click Edit.
6. Click the Services and Tools tab.
7. Under Presets, select an option.
8. If you selected Custom, under Role State, for each service or tool in the list, select Allowed or Not
Allowed.
9. To hide a service icon on the printer touch screen, select Not Allowed and Hidden.
10. Click Apply.
Creating a New Role
To edit permissions for a specific group of users, you must first create a role.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click User Permissions.
3. Under Action, next to User Permission Roles, click Edit.
4. Click the Logged In Users tab.
5. Click Make Your Own Permission Roles or Add New Role.
6. Type a name and description for the role.
7. Click View Quick Setup Options. Under Allow users…, select options.
If you do not select an option, print permissions are set to Allowed.
8. Click Create.
9. Assign users to the role, or to configure permissions for the role, click either the Print tab or Services
and Tools tab.
10. To save, click Apply.
Assigning Users to a Role for Local Authorization
Once you configure local authorization, add user information to the User Database, and create a role, you can assign users to the role.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click User Permissions.
3. Under Action, next to User Permission Roles, click Edit.
4. Click the Logged In Users tab.
5. Next to a role, click Edit User Mappings.
72 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 73
Security
6. Under Methods, select an option:
Select Individual Users allows you to select the users that you want to assign to the role. All Logged in Users assigns all users to the role.
To select specific users to remove from the role, select All Logged in Users and Exceptions. All other users are assigned to the role.
7. If you chose Select Individual Users, or Exceptions, select users from list. To create a user entry and
add it to the role, click Add New User.
8. Click Save.
Assigning User Groups to a Role for Network Authorization
Once you configure network authorization, you can assign LDAP or SMB groups of users to roles.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click User Permissions.
3. Under Action, next to User Permission Roles, click Edit.
4. Click the Logged In Users tab.
5. Next to a role, click Edit User Mappings.
6. Under Methods, select an option:
Assign Groups allows you to select the user groups that you want to assign to the role. All Logged in Users assigns all user groups to the role.
To select specific user groups to remove from the role, select All Logged in Users and Exceptions. All other user groups are assigned to the role.
7. If you chose Select Individual Users, or Exceptions, select user groups. a. If you know the name of the group you want to add, under Assign Groups, type the group name
and click Search for Groups.
b. To add a group to the role, select the group from the list and click Add. To add all groups from
the list to the role, click Add All. Groups assigned to the role appear in the Users in Assigned Groups list.
c. To remove a group, select the group in the Users in Assigned Groups list and click Remove. To
remove all groups from the list, click Remove All.
8. Click Apply.
ColorQube 8700/8900 Color Multifunction Printer 73 System Administrator Guide
Page 74
Security
Note: You cannot edit permissions for the System Administrator or Accounting Administrator roles.
Users assigned to the System Administrator Role can access all features of the printer. Users assigned to the Accounting Administrator Role can access accounting features only.
Editing an Authenticated User Role
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click User Permissions.
3. Under Action, next to User Permission Roles, click Edit.
4. Click the Logged In Users tab.
5. Next to a role, click Edit User Mappings.
6. Assign users to the role, or to configure permissions for the role, click either the Print tab or Services
and Tools tab.
7. To save, click Apply.
For details, see Editing Print Permissions for the Non-Logged In Users Role on page 70 and Editing
Services and Tools Permissions for the Non-Logged In Users Role on page 72.
Specifying Job Override Policies
Use Job Override Policies to specify what happens when a user without appropriate print permissions sends a color or 1-sided print job to the printer.
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click User Permissions.
3. Under Action, next to Job Override Policies, click Edit.
4. Under Color Printing, select Print Job in Black & White, or Delete Job. If an unauthorized user sends
a color job, the job prints in black and white, or is deleted.
5. Under 1-Sided Printing, select Print Job 2-Sided, or Delete Job. If an unauthorized user sends a
1-sided job, the job prints 2-sided, or is deleted.
Troubleshooting Conflicting Permissions
1. In CentreWare Internet Services, click Properties > Login/Permissions/Accounting.
2. Click User Permissions.
3. Under Action, next to User Permission Roles, click Edit.
4. Click Troubleshooting.
5. To see a summary of permissions for a user, on the Permission Role Summaries tab, next to a user
name click Permissions Summary.
Temporarily Disabling Print Permissions for all Users
1. On the Troubleshooting page, click the Permission Enablement tab.
2. To disable print restrictions for all users, next to Print, under Actions, select Disable.
3. Click Apply.
74 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 75
Security
Note: SSL encryption is protocol-independent. You can turn SSL on or off for each protocol or scan
destination as needed.
Note: When Secure HTTP is enabled, all pages in CentreWare Internet Services contain https:// in the
URL for the Web page.

Secure HTTP (SSL)

You can establish an HTTP Secure (HTTPS) connection to the printer by encrypting data sent over HTTP using SSL. You can also enable SSL encryption for the following features:
Configuring the printer in CentreWare Internet Services Printing from CentreWare Internet Services Printing using IPP Managing scan templates Workflow Scanning Network accounting
Before you begin:
Ensure DNS is enabled and configured. Ensure that the date and time configured on the printer is correct. The time that is set on the printer
is used to set the start time for the Xerox® Device Certificate. A Xerox® Device Certificate is installed when you enable HTTP (SSL).

Enabling HTTPS (SSL)

1. In CentreWare Internet Services, click Properties > Connectivity > Protocols.
2. Click HTTP.
3. Under Secure HTTP (SSL), select Enabled.
ColorQube 8700/8900 Color Multifunction Printer 75 System Administrator Guide
Page 76
Security
Note: Enabling FIPS 140 Mode can prevent the printer from communicating with network devices
that communicate using protocols that do not use FIPS-compliant encryption algorithms.

FIPS 140-2

You can enable the printer to check the current configuration to ensure that transmitted and stored data is encrypted as specified in Government Standard FIPS 140-2 (Level 1). If FIPS 140-2 encryption is required, all computers, serves, browser software, security certificates, and applications must comply with the standard or operate in FIPS-compliant mode.
To allow the printer to use non-FIPS compliant protocols or features when FIPS 140 mode is enabled, acknowledge the notification of non-compliance during the validation process.
When non-FIPS compliant protocols, such as SNMPv3 or NetWare, are enabled after FIPS mode is enabled, a message appears indicating the protocols use non-FIPS compliant encryption algorithms.
When you enable FIPS-140 mode, the printer validates the current configuration by performing the following checks:
Validates certificates for features where the printer is the server in the client-server relationship. An
SSL certificate for HTTPS is an example.
Validates certificates for features where the printer is the client in the client-server relationship. CA
certificates for LDAP, Xerox Extensible Interface Platform (EIP), and SMart eSolutions are examples.
Validates certificates that are installed on the printer, but not used. Certificates for HTTPS, LDAP, or
SNMPv3 are examples.
Checks features and protocols for non-compliant encryption algorithms. For example, NetWare and
SNMPv3 use encryption algorithms that are not FIPS-compliant.
When validation is complete, information and links appear in a table at the bottom of the page.
Click the appropriate link to disable a non-compliant feature, or protocol. Click the appropriate link to replace any non-compliant certificates. Click the appropriate link to acknowledge that you allow the printer to use non-compliant features
and protocols.
76 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 77
Note: When FIPS 140 Mode is enabled, only FIPS-compliant certificates can be installed on the
printer.

Enabling FIPS 140 Mode and Checking for Compliance

1. In CentreWare Internet Services, click Properties > Security > Encryption.
2. Click FIPS 140-2.
3. Click Enable.
4. Click Run Configuration Check and Apply.
A pass or fail message appears:
If the configuration check passes, click Reboot Machine to save and restart the printer. If the configuration check fails, the reasons for the failed test list in a table at the bottom of the
page. For each reason, a link is provided. Click the appropriate link to disable the protocol, replace the certificate, or allow the printer to use the non-compliant protocol.
Security
ColorQube 8700/8900 Color Multifunction Printer 77 System Administrator Guide
Page 78
Security
CAUTION: The printer restarts. This interrupts or deletes current jobs. Xerox® recommends that you
back up jobs and folders before enabling User Data Encryption.

Stored Data Encryption

You can encrypt user data on the printer hard drive to prevent unauthorized access to data stored on the drive.

Enabling Encryption of Stored Data

1. In CentreWare Internet Services, click Properties > Security > Encryption.
2. Click User Data Encryption.
3. Under User Data Encryption Enablement select Enabled.
4. Click Apply to save the new settings or Undo to retain the previous settings.
78 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 79
Security

IP Filtering

You can prevent unauthorized network access by creating an IP Filter to block or allow data sent from particular IP addresses.

Creating an IP Filter Rule

1. In CentreWare Internet Services, click Properties > Security.
2. Click IP Filtering.
3. Click Add.
4. From the Protocol menu, select the protocol. Options include All, TCP, UDP, or ICMP.
5. From the Action menu, select how you want the filter to manage the incoming packet. If you want the printer to reject the packet and send an ICMP message back to the source host,
select Reject.
If you want the printer to ignore the packet, select Drop.
6. To specify the order that actions are performed, select either End of List or Beginning of List from
the Move This Rule To menu. Actions are performed in the order defined in the rule list. To arrange rule execution order, go to the IP Filtering page.
7. Type the Source IP Address.
8. Type a number between 0–32 for the Source IP Mask that uses this rule. The range of 0–32
corresponds to the 32-bit binary number comprising IP addresses. For example:
The number 8, represents a Class A address with a mask of 255.0.0.0. The number 16 represents a Class B address with a mask of 255.255.0.0. The number 24 represents a Class C address with a mask of 255.255.255.0.
9. If TCP or UDP is the selected Protocol type: a. Type the Source Port if applicable. The Source Port is the originating port that the rule has been
created to manage. If the incoming packet does not originate from this port, the rule is ignored.
b. Type the Destination Port that the rule has been created to manage. If the incoming packet is
not sent to this port, the rule is ignored.
10. If ICMP is the selected Protocol type, select which ICMP Message type the rule is meant to manage.
11. Click Apply to save the new settings or Cancel to return to the previous screen.
12. Restart your printer for the new settings to take effect.

Editing an IP Filter Rule

1. In CentreWare Internet Services, click Properties > Security.
2. Click IP Filtering.
3. Click an IP filter rule.
4. Click Edit and edit the rule.
5. Click Apply.
ColorQube 8700/8900 Color Multifunction Printer 79 System Administrator Guide
Page 80
Security

Arranging the Execution Order of IP Filter Rules

1. In CentreWare Internet Services, click Properties > Security.
2. Click IP Filtering.
3. Click an IP filter rule.
4. Under Move selected rule to position, select the position and click Move.
80 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 81
Notes:
One audit log entry is recorded for each network destination within a Workflow Scanning scan
job.
For Server Fax jobs, one audit log entry is recorded for each Server Fax job, regardless of the
number of destinations.
For LAN Fax jobs, one audit log entry is recorded for each LAN Fax job. For Email jobs, one audit log entry is recorded for each SMTP recipient within the job.

Audit Log

The Audit Log feature records events that occur on the printer. You can then download the log as a tab-delimited text file to review for potential problems or security issues.

Enabling Audit Log

Before you begin:
Ensure that Secure HTTP (SSL) is enabled.
1. In CentreWare Internet Services, click Properties > Security.
2. Click Audit Log.
3. Click Enabled under Enabling Audit Log on machine.
4. Click Apply.
Security

Saving an Audit Log

1. In CentreWare Internet Services, click Properties > Security.
2. Click Audit Log.
3. Click Save.
4. Right-click the Download Log link and save the compressed auditfile.txt.gz file to your computer.
5. Extract the Auditfile.txt text file, and open it in a spreadsheet application that can read a
tab-delimited text file.

Interpreting the Audit Log

The Audit Log is formatted into ten columns:
Index: Column 1 lists a unique value that identifies the event. Date: Column 2 lists the date that the event happened in mm/dd/yy format. Time: Column 3 lists the time that the event happened in hh:mm:ss format. Event ID: Column 4 lists the type of event. The number corresponds to a unique description. Event Description: Column 5 lists an abbreviated description of the type of event.
ColorQube 8700/8900 Color Multifunction Printer 81 System Administrator Guide
Page 82
Security
Note: Authentication must be configured to record the user name in the Audit Log.
See also:
Audit Log Event Identification Numbers on page 206
Other Event Details: Columns 6–10 list other information about the event, such as:
Identity: User Name, Job Name, Computer Name, Printer Name, Folder Name, or Accounting
Account ID display when Network Accounting is enabled.
Completion Status Image Overwrite Status: The status of overwrites completed on each job. Immediate Image
must be enabled.
82 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 83
DHCP v4/v6 (TCP and UDP) DNS (TCP and UDP) FTP (TCP) HTTP (Scan Out, TCP port 80) HTTPS (Scan Out, TCP port 443) HTTPS (Web Server, TCP port 443) ICMP v4/v6 IPP (TCP port 631)
LPR Print (TCP port 515) Port 9100 Print (TCP port 9100) SMTP (TCP/UDP port 25) SNMP (TCP/UDP port 161) SNMP Traps (TCP/UDP port 162) WS-Discovery (UDP port 3702) Up to 10 additional services
Note: IPsec can be enabled in CentreWare Internet Services only.

IPsec

Internet Protocol Security (IPsec) is a group of protocols used to secure Internet Protocol (IP) communications by authenticating and encrypting each IP data packet. It allows you to control IP communication by creating protocol groups, policies, and actions.
You can control IP communication on the printer for the following:
Security

Enabling IPsec

Before you begin:
Ensure that Secure HTTP (SSL) is enabled.
1. In CentreWare Internet Services, click Properties > Security.
2. Click IPsec.
3. Under Enablement, select Enabled.
4. Click Apply to save the new settings or Undo to retain the previous settings.
Disabling IPsec at the Control Panel
1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Security Settings > IPsec.
3. Touch Disable IPsec.

Managing Actions

Use actions to more specifically manage how IPsec controls dependent protocols.
ColorQube 8700/8900 Color Multifunction Printer 83 System Administrator Guide
Page 84
Security
Note: Select Manual Keying if client devices are not configured for or do not support IKE.
Note: Transport mode only encrypts the IP payload, whereas Tunnel mode encrypts the IP header
and the IP payload. Tunnel mode provides protection for an entire IP packet by treating it as an Authentication Header (AH), or Encapsulating Security Payload (ESP).
Note: If the IPsec Security type is set to AH, the Encryption type options do not appear.
Creating a New Action
1. Click Actions at the top of the IPsec page.
2. Click Add New Action.
3. On the Step 1 of 2 page, under IP Action Details, type in the Name. This field is required.
4. In the Description field, type a description for the action, if desired.
5. Under Keying Method, select Manual Keying or Internet Key Exchange (IKE).
6. If you selected IKE, under Pre-shared Key Passphrase, type the passphrase, then click Next.
Configuring Manual Keying Settings
Manual Keying is used when client systems either do not support IKE or are not configured for IKE.
1. Under IPsec Mode, select Transport Mode or Tunnel Mode.
2. If you selected Tunnel Mode, under Enable Security End Point Address, select the address type.
Options are Disabled, IPv4 Address, or IPv6 Address.
3. Under IPsec Security, select ESP, AH, or BOTH.
4. In the Security Parameter Index: IN field, type a 32-bit number larger than 256 that identifies the
inbound Security Association (SA).
5. In the Security Parameter Index: OUT field, type a 32-bit number larger than 256 that identifies the
outbound Security Association (SA).
6. Under Hash, select from the following:
SHA1 None
7. Under Enter Keys as, select ASCII format or Hexadecimal number.
8. Type a 20-character ASCII key, or 40-character Hexadecimal key for the following:
Hash Key: IN Hash Key: OUT
9. If you selected ESP or BOTH for the IPsec Security type, select one or more of the following
Encryption types:
AES 3DES None
84 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 85
Security
Note: Transport mode only encrypts the IP payload, whereas Tunnel mode encrypts the IP header
and the IP payload. Tunnel mode provides protection for an entire IP packet by treating it as an Authentication Header (AH), or Encapsulating Security Payload (ESP).
Note: PFS is disabled by default. PFS allows faster IPsec setup, but is less secure.
Note: If the IPsec Security type is set to AH, the Encryption type options do not appear.
10. Type a 24-character ASCII key, or 48-character Hexadecimal key for the following:
Encryption Key: IN Encryption Key: OUT
11. Click Save to apply the new settings or Undo to retain the previous settings.
Configuring Internet Key Exchange Settings
IKE is a keying protocol that allows automatic negotiation and authentication, anti-replay services, and CA support. It can also change encryption keys during an IPsec session. IKE is used as part of virtual private networking.
IKE Phase 1 authenticates the IPsec peers and sets up a secure channel between the peers to enable IKE exchanges. IKE Phase 2 negotiates IPsec SAs to set up the IPsec tunnel.
1. Under IKE Phase 1, in the Key Lifetime field, type the length of time until the key expires in Seconds,
Minutes, or Hours. When a key reaches this lifetime, the SA is renegotiated and the key is regenerated or refreshed.
2. Select the DH Group from the following options:
Group 2 provides a 1024-bit Modular Exponential (MODP) keying strength. Group 14 provides a 2048-bit MODP keying strength.
3. Under IKE Phase 2, select the IPsec Mode. Options are Transport Mode or Tunnel Mode.
4. If you selected Tunnel Mode, under Enable Security End Point Address, select the address type.
Options are Disabled, IPv4 Address, or IPv6 Address.
5. Under IPsec Security, select ESP, AH, or BOTH.
6. Type the Key Lifetime, and select Seconds, Minutes, or Hours.
7. Under Perfect Forward Secrecy (PFS), select None, Group 2, or Group 14.
8. Under Hash, select from the following:
SHA1 None
9. If you selected ESP or BOTH for the IPsec Security type, select one or more of the following
Encryption types:
AES 3DES Null
10. Click Save to apply the new settings or Undo to retain the previous settings.
ColorQube 8700/8900 Color Multifunction Printer 85 System Administrator Guide
Page 86
Security
Editing or Deleting an Action
To edit or delete an action, select the action from the list, then click Edit or Delete.

Managing Protocol Groups

Protocol Groups are logical groupings of selected protocols based on service type, service name, port number, and device type. Create a Protocol Group to apply specific security policies for selected protocols.
Creating a New Protocol Group
1. Click Protocol Groups at the top of the IPsec page.
2. Click Add New Protocol Group.
3. Type a Name and a Description for the group.
4. Under Service Name, select the protocols that you want to add to the group.
5. To control a service that is not listed, under Custom Protocols type a name for the service and select
the check box under Service Name.
6. To control a service that is not listed, under Custom Protocols type a name for the service and select
the check box under Service Name.
7. Select TCP or UDP from the Protocol list.
8. Type the port number, and specify if the printer is the server or client.
9. Click Save to apply the new settings or Undo to retain the previous settings. Click Cancel to return to
the previous page.
Editing or Deleting a Protocol Group
To edit or delete a protocol group, select the protocol group from the list, and click Edit or Delete.

Managing Host Groups

Host groups are groupings of computers, servers, or other devices that you want to control using security policies.
86 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 87
Creating a New Host Group
1. Click Host Groups at the top of the IPsec page.
2. Click Add New Host Group.
3. Type a Name and a Description for the group.
4. Under Address List, select IPv4 or IPv6.
5. Select an Address Type. Options are Specific, All, or Subnet.
6. Type the appropriately formatted IP address.
7. To continue to add addresses to the group, click Add.
8. To delete addresses, next to any address, click Delete.
9. Click Save to apply the new settings or Undo to retain the previous settings.
Editing or Deleting a Host Group
To edit or delete a host group, select the host group from the list, and click Edit or Delete.
Security

Managing Security Policies

IPsec security policies are sets of conditions, configuration options, and security settings that enable two systems to agree on how to secure traffic between them. You can have multiple policies active at the same time, however, the scope and policy list order determines the overall policy behavior.
Defining a Security Policy
1. Click Security Policies at the top of the IPsec page.
2. Under Define Policy, select a Host Group from the menu.
3. Select a Protocol Group from the menu.
4. Select an Action from the menu.
5. Click Add Policy.
Prioritizing a Security Policy
To prioritize policies, under Saved Policies, select the policy you want to move, then click the Promote or Demote buttons.
Editing or Deleting a Security Policy
To delete a policy, under Saved Policies, select the policy and click Delete.
ColorQube 8700/8900 Color Multifunction Printer 87 System Administrator Guide
Page 88
Security
Note: When you enable HTTPS, a Xerox® Device Certificate is created and installed on the printer
automatically.

Security Certificates

A digital certificate is a file that contains data used to verify the identity of the client or server in a network transaction. A certificate also contains a public key used to create and verify digital signatures. One device proves its identity to another by presenting a certificate trusted by the other device. Or, the device can present a certificate signed by a trusted third party and a digital signature proving its ownership of the certificate.
A digital certificate includes the following data:
Information about the owner of the certificate The certificate serial number and expiration date The name and digital signature of the Certificate Authority (CA) that issued the certificate A public key A purpose defining how the certificate and public key can be used
There are three types of certificates:
A Device Certificate is a certificate for which the printer has a private key. The purpose specified in
the certificate allows it to be used to prove identity.
A CA Certificate is a certificate with authority to sign other certificates. A Trusted Certificate is a self-signed certificate from another device that you want to trust.
To ensure that the printer can communicate with other devices over a secure trusted connection, both devices must have specific certificates installed.
For protocols such as HTTPS, the printer is the server, and must prove its identity to the client Web browser. For protocols such as 802.1X, the printer is the client, and must prove its identity to the authentication server, typically a RADIUS server. For features that use these protocols, perform the following tasks:
Install a device certificate on the printer.
Install a copy of the CA certificate that was used to sign the device certificate of the printer on the
other device.
Protocols such as LDAP and IPsec require both devices to prove their identity to each other. For features that use these protocols, perform the tasks listed under one of the following options:
To install certificates, option 1:
Install a device certificate on the printer. Install a copy of the CA certificate that was used to sign the device certificate of the printer on the
other device.
Install a copy of the CA certificate that was used to sign the certificate of the other device on the
printer.
88 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 89
Security
Note: Creating a Xerox® Device Certificate is less secure than creating a certificate signed by a
trusted certificate authority.
Note: You can also download the Generic Xerox® Trusted CA Certificate from the HTTP page at
Properties > Connectivity > Protocols > HTTP.
To install certificates, option 2:
If the other device is using a self-signed certificate, install a copy of the trusted certificate of the other device on the printer.

Creating and Installing a Xerox® Device Certificate

If you do not have a server functioning as a Certificate Authority, install a Xerox® Device Certificate on the printer. When you create a Xerox® Device Certificate the printer generates a certificate, signs it, and creates a public key used in SSL encryption. After you install a Xerox® Device Certificate on the printer, install the Generic Xerox® Trusted CA Certificate in any device that communicates with the printer. Examples of other devices include client Web browsers for HTTPS or a RADIUS authentication server for
802.1X. Installing the Generic Xerox® Trusted CA Certificate ensures that users can access the printer
using CentreWare Internet Services, and certificate warning messages do not appear.
1. In CentreWare Internet Services, click Properties > Security.
2. Click Certificates.
3. Click Security Certificates.
4. Click the Xerox Device Certificate tab.
5. Select Create New Xerox Device Certificate.
6. Complete the form with the requested information.
7. Click Finish.

Installing the Generic Xerox® Trusted CA Certificate

If the printer uses the Xerox® Device Certificate, and a user attempts to access the printer using CentreWare Internet Services, an error message can appear in their Web browser. To ensure that error messages do not appear, install the Generic Xerox® Trusted CA Certificate in the Web browsers of all users.
1. In CentreWare Internet Services, click Properties > Security.
2. Click Certificates.
3. Click Security Certificates.
4. To save the file to your computer, click Download the Generic Xerox Trusted CA Certificate.
5. Install the file in your Web browser certificate store location. For details, see your Web browser help.
ColorQube 8700/8900 Color Multifunction Printer 89 System Administrator Guide
Page 90
Security
Note: The Subject Alternative Name is only required when using 802.1X EAP -TLS for Windows clients
or servers.
Note: The signed certificate must match the CSR created by the printer.

Creating a Certificate Signing Request

If you do not install a Xerox Device Certificate, you can install a CA-signed device certificate. Create a Certificate Signing Request (CSR), and send it to a CA or a local server functioning as a CA to sign the CSR. An example of a server functioning as a certificate authority is Windows Server 2008 running Certificate Services. When the CA returns the signed certificate, install it on the printer.
Creating a Certificate Signing Request
1. In CentreWare Internet Services, click Properties > Security.
2. Click Certificates.
3. Click Security Certificates.
4. Click the CA-Signed Device Certificate(s) tab.
5. Select Create Certificate Signing Request (CSR).
6. Complete the form with your 2-Letter Country Code, State/Province Name, Locality Name,
Organization Name, Organization Unit, and Email Address.
7. Select Subject Alternative Name if applicable, and type the MS Universal Principal Name.
8. Click Finish.
Uploading a CA-Signed Device Certificate
1. In CentreWare Internet Services, click Properties > Security.
2. Click Certificates.
3. Click Security Certificates.
4. Click the CA-Signed Device Certificate(s) tab.
5. Select Install CA-signed Device Certificate.
6. Click Browse or Choose File, navigate to the signed certificate in .pem or PKCS#12 format, and click
Open or Choose.
7. Click Next.
8. If the certificate is password protected, type the password then retype it to verify.
9. Type a Friendly Name to help identify the certificate in the future.
10. Click Next.
90 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 91
Security

Installing Root Certificates

Install the certificates of the root certificate authority and any intermediate certificate authorities for your company. Install the self-signed certificates from any other devices in your network.
1. In CentreWare Internet Services, click Properties > Security.
2. Click Certificates.
3. Click Security Certificates.
4. Click the Root/Intermediate Trusted Certificate(s) tab.
5. Click Install external Root/Intermediate trusted certificates.
6. Click Browse or Choose File, navigate to the signed certificate .crt file, then click Open or Choose.
7. Click Next.
8. Type a Friendly Name to help identify the certificate in the future.
9. Click Next.
The digital certificate appears in the list of Installed certificates.

Installing Domain Controller Certificates

Install the self-signed certificates from any domain controllers in your network.
1. In CentreWare Internet Services, click Properties > Security.
2. Click Certificates.
3. Click Security Certificates.
4. Click the Domain Controller Certificates tab.
5. Click Install Domain Controller Certificate.
6. Click Browse or Choose File, navigate to the signed certificate in .pem or PKCS#12 format, and click
Open or Choose.
7. Click Next.
8. Type a Friendly Name to help identify the certificate in the future.
9. Click Next.
The digital certificate appears in the list of Installed certificates.

Viewing, Saving, or Deleting a Certificate

1. On the Security Certificates page, click a certificate type tab.
2. To view or save a certificate, under Action, click View/Save.
Certificate details appear on the View/Save Device Certificate page.
a. To save the certificate file to your computer, at the bottom of the page, click Save Base-64
encoded (PEM).
b. Click Cancel to return to the Security Certificates page.
ColorQube 8700/8900 Color Multifunction Printer 91 System Administrator Guide
Page 92
Security
Note: You cannot delete the Default Xerox Device Certificate.
3. To delete a certificate, select the check box next to the certificate name and click Delete.
4. Click Reset to Machine/Device Factory Defaults to delete all certificates except the Default Xerox
Device Certificate.
®

Specifying the Minimum Certificate Key Length

You can specify the minimum encryption key length required for certificates. If a user attempts to upload a certificate that contains a key that does not meet this requirement, a message appears. The message alerts the user that the certificate they are attempting to upload does not meet the key length requirement.
1. In CentreWare Internet Services, click Properties > Security.
2. Click Certificates > Certificate Key Length.
3. Under Minimum Encryption Key Length, select 1024-bit minimum, 2048-bit minimum, or No
Minimum.
4. Click Apply.
92 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 93
Security
Note: This procedure causes the printer to restart and be unavailable over the network for several
minutes.
Note: When the printer is in FIPS 140 mode, EAP-TLS authentication is required.

802.1X

802.1X is an Institute for Electrical and Electronics Engineers (IEEE) standard that defines a method for
port-based network access control or authentication. In an 802.1X secured network, the printer must be authenticated by a central authority, typically a RADIUS server, before it can access the physical network.
You can enable and configure the printer to be used in an 802.1X secured network from the printer control panel or in CentreWare Internet Services.
Before you begin:
Ensure that your 802.1X authentication server and authentication switch are available on the
network.
Determine the supported authentication method. Create a user name and password on your authentication server.

Enabling and Configuring 802.1X at the Control Panel

1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Network Settings > Advanced Settings.
3. Touch Continue.
4. Touch 802.1X.
5. Touch Enable.
6. Touch Authentication Method and select the method used on your network. Options are:
EAP-MD5 EAP-MS-CHAPv2 PEAPv0/EAP-MS-CHAPv2
7. Touch Username.
8. Type the user name required by your authentication switch and server using the touch screen
keyboard.
9. Touch Password, and type the password using the touch screen keyboard.
10. Touch Save, then touch Save again.
11. Touch Close.
ColorQube 8700/8900 Color Multifunction Printer 93 System Administrator Guide
Page 94
Security
Note: When the printer is in FIPS 140 mode, EAP-TLS authentication is required.
Notes:
TLS authentication and server verification both require X.509 certificates. To use these
features, install the necessary certificates on the Security Certificates page before configuring
802.1X.
The Default Xerox
®
Device Certificate cannot be used with EAP-TLS in Windows environments.
It can be used in FreeRADIUS server environments.

Enabling and Configuring 802.1X in CentreWare Internet Services

1. In CentreWare Internet Services, click Properties > Security.
2. Click 802.1X.
3. Under Protocol, select Enable 802.1X.
4. Under Authentication Method, select the method used on your network. Options are:
EAP-MD5 PEAPv0/EAP-MS-CHAPv2 EAP-MS-CHAPv2 EAP-TLS
5. Under User Name (Device Name), type the user name required by your authentication switch and
server.
6. If you selected PEAPv0/EAP-MS-CHAPv2, EAP-MS-CHAPv2, or EAP-TLS as the Authentication
Method, you can require the printer to validate certificates used to encrypt 802.1X. Under Server Validation, select the root certificate that you want to use to validate the authentication server. Select No Validation if you do not want to validate a certificate.
7. To view or save a certificate, select the certificate from the menu and click View/Save.
Certificate details appear on the View/Save Device Certificate page.
a. To save the certificate file to your computer, at the bottom of the page, click Save Base-64
encoded (PEM).
b. Click Cancel to return to the previous page.
8. If you selected PEAPv0/EAP-MS-CHAPv2, EAP-MS-CHAPv2, or EAP-TLS as the Authentication
Method, you can allow the printer to encrypt 802.1X communication. Under Device Certificate (TLS)
- Authentication Certificate, select the certificate that you want to use.
9. To view or save a certificate, select the certificate from the menu and click View/Save.
Certificate details appear on the View/Save Device Certificate page.
a. To save the certificate file to your computer, at the bottom of the page, click Save Base-64
encoded (PEM).
b. Click Cancel to return to the previous page.
94 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 95
Security
10. Under User Name (Device Name), type the user name required by your authentication switch and
server.
11. Type the Password, then retype it to confirm.
12. To save the new password, select the check box next to Select to save new password. A password is
not required for EAP-TLS authentication.
13. Click Apply to save the new settings or Undo to retain the previous settings.
ColorQube 8700/8900 Color Multifunction Printer 95 System Administrator Guide
Page 96
Security

System Timeout

You can specify how long the printer waits to log out an inactive user at the control panel.

Setting System Timeout Values

1. In CentreWare Internet Services, click Properties > Security.
2. Click System Timeout.
3. Under Web System Timer, type the inactive time from 6–6000 minutes, that the printer waits before
it logs a user out of CentreWare Internet Services.
4. Under Touch User Interface System Timer, type the time that the printer waits before it logs a user
out of the touch screen. Type the time, from 0–60 minutes, and select the time in seconds.
5. Under Warning Screen, select Enabled to require the printer to display a warning message before it
logs a user out of the touch screen.
6. Click Apply to save the new settings or Undo to retain the previous settings.

Setting the System Timeout Values at the Control Panel

1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Device Settings > Timers > System Timeout.
3. Specify the time the printer waits to log out an inactive user at the control panel. Next to Timeout
(Mins), and Timeout (Secs), touch the arrows.
4. To instruct the printer to display a warning message before it logs a user out of the touch screen,
under Warning Screen, touch Enabled.
5. Touch Save.
96 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 97
Security
Note: Standard image overwrite takes approximately 20 minutes to complete.
Note: Full image overwrite takes approximately 60 minutes to complete.

Overwriting Image Data

Image data is any in-process or temporary user data on the hard drive, such as current jobs, queued jobs, temporary files, saved jobs, and saved folders. To ensure that image data on the printer hard drive cannot be accessed, you can delete and overwrite image data.
Standard Image Overwrite deletes all image data from the printer memory and hard drive, except:
Jobs and folders stored in the Reprint Saved Jobs feature Jobs stored in the Scan to Mailbox feature Fax Dial Directories Fax Mailbox contents
Full Image Overwrite deletes all image data from the printer memory and hard drive, including:
Jobs and folders stored in the Reprint Saved Jobs feature Jobs stored in the Scan to Mailbox feature Fax Dial Directories Fax Mailbox contents
Immediate Job Overwrite prompts the printer to overwrite each job immediately after it finishes processing.
ColorQube 8700/8900 Color Multifunction Printer 97 System Administrator Guide
Page 98
Security

Scheduling Routine Deletion of Image Data

1. In CentreWare Internet Services, click Properties > Security.
2. Click Image Overwrite Security.
3. Click the Disk Overwrite tab.
4. Click the Scheduled tab.
5. On the Scheduled tab, select Enabled.
6. Under Frequency, select how often the printer overwrites data.
7. To set the time when the printer overwrites data, under Time, type the hour and minute, and select
AM or PM.
8. If you selected Weekly for Frequency, under Day of the Week, select the day when the printer
overwrites data. If you selected Monthly for Frequency, under Day of the Month, select the date when the printer overwrites data.
9. To print a confirmation report after the printer overwrites data, under Confirmation Report for
Schedule Overwrites, select On. To print a report only if an error occurs, select Errors only.
10. Under Overwrite Mode, select an option: Standard Image Overwrite deletes all image data from the printer memory and hard drive,
except:
Jobs and folders stored in the Reprint Saved Jobs feature Jobs stored in the Scan to Mailbox feature Fax Dial Directories Fax Mailbox contents
Full Image Overwrite deletes all image data from the printer memory and hard drive.
11. Click Apply.
98 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Page 99
Note: Standard image overwrite takes approximately 20 minutes to complete.
Note: Full image overwrite takes approximately 60 minutes to complete.
Note: Depending on how many files are being deleted, the printer can be offline for up to 60 minutes
during the deletion process.

Manually Deleting Image Data

1. In CentreWare Internet Services, click Properties > Security.
2. Click Image Overwrite Security.
3. Click the Disk Overwrite tab.
4. Click Overwrite Now.
5. To print a confirmation report after the printer overwrites data, under Confirmation Report for
Schedule Overwrites, select On. To print a report only if an error occurs, select Errors only.
6. To start a Standard disk overwrite: a. Click Start Disk Overwrite Now. b. Click OK to acknowledge the warning message.
7. To start a Full disk overwrite: a. Click Advanced Settings. b. Select Full. c. Click Start Disk Overwrite Now. d. Click OK to acknowledge the warning message.
Security

Manually Deleting Image Data at the Control Panel

1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Security Settings > Image Overwrite Security.
3. Touch On Demand Overwrite.
4. Touch Standard or Full.
5. Touch Overwrite Now.
6. To acknowledge the message and start the process touch Overwrite.

Immediate Job Overwrite

Immediate Job Overwrite prompts the printer to overwrite each job immediately after it finishes processing.
ColorQube 8700/8900 Color Multifunction Printer 99 System Administrator Guide
Page 100
Security
Enabling Immediate Image Overwrite
1. In CentreWare Internet Services, click Properties > Security.
2. Click Image Overwrite Security.
3. Click the Immediate Image Overwrite tab.
4. On the Immediate Image Overwrite tab, under Enablement, select Enabled.
5. Click Apply.
Enabling Immediate Image Overwrite at the Control Panel
1. At the printer control panel, press the Machine Status button, then touch the Tools tab.
2. Touch Security Settings > Image Overwrite Security.
3. Touch Immediate Overwrite.
4. Touch Enable.
100 ColorQube 8700/8900 Color Multifunction Printer System Administrator Guide
Loading...
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use