How it Works
Xerox
Loading...
Secure Access Unified ID System
Installation Guide [de]
36 pgs1.49 Mb0
Embedded for Xerox EPA-EIP Setup Guide
48 pgs1.01 Mb0
5.3 Installation Guide
44 pgs769.08 Kb0
Embedded for Xerox EIP Setup Guide
98 pgs4.8 Mb0
Setting up the IP address [fr]
13 pgs243.46 Kb0
Administration Guide [es]
54 pgs2.24 Mb0
Administration Guide [it]
52 pgs2.23 Mb0
Installation Guide [fr]
36 pgs1.49 Mb0
Setting up the IP address [es]
13 pgs233.65 Kb0
Administration Guide [fr]
54 pgs2.24 Mb0
Administration Guide [de]
52 pgs2.23 Mb0
Administration Guide
50 pgs2.19 Mb0
Setting up the IP address [de]
13 pgs231.37 Kb0
Setting the Secure Access Unified ID
13 pgs230.12 Kb0
Installation Guide [it]
36 pgs1.47 Mb0
Installation Guide [es]
36 pgs1.48 Mb0
Installation Guide
36 pgs1.47 Mb0
Setting the Secure Access Unified ID [it]
13 pgs230.85 Kb0
Quick Start Guide [en,fr,it,de,pt]
2 pgs353.07 Kb0
Embedded for Xerox ECSP Setup Guide
104 pgs1.98 Mb0
Administration Guide
100 pgs3.25 Mb0
Table of contents
Loading...

Xerox Secure Access Unified ID System Administration Guide

Version 1.6, October 2010
Version 1.6, October 2010
Xerox Secure Access
Xerox Secure Access
®
Unified ID System
Administration Guide
Administration Guide
®
701P48478 Rev B
© 2010 Xerox Corporation. All rights reserved.
© 2010 Xerox Corporation. All rights reserved.
Copyright© 2007-2010 by Xerox Corporation. All rights reserved. XEROX©, Secure Access Unified ID System, SMARTsend, and FreeFlow are trademarks of or licensed to Xerox Corporation in the United States and other countries.

Contents

1Safety Notes
Electrical Supply . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6
WARNING - Electrical Safety Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .7
Disconnect Device . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 7
Regulatory Information . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8
Radio Frequency Emissions. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .8
Product Recycling and Disposal . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
European Union . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 10
EH&S Contact Information. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11
2 Installation Checklist
3 Secure Access Overview
What is Secure Access? . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 15
Secure Access Components . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 16
Core Authentication Server (CAS) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
Device Control Engine (DCE) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 17
Document Routing Engine (DRE) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 18
Making Changes to Server Components. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19
Data Reader Support and User Workflow . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
Magstripe Device Reader. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
Contactless Smart Cards and Proximity Cards . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20
Card Reader Signals and Modes . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 21
Administering Secure Access . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
Language Support. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 23
4 Configuration & Management
Configuration Workflow . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25
Add MFP Devices to the Secure Access Database . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Enter Device Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 26
Associate the MFP with a Secure Access Authentication Device. . . . . . . . . . . . . . . . . . . . . . . . . 27
Setting Authentication Parameters . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 28
HID Decoding . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29
Swipe Card Self-Registration . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 30
Configure Follow-You Printing. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
Convert Ports to use the Secure Access Port Monitor . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31
Creating a Print Queue with a Secure Access Port . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 32
Create Pull Groups . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 33
Xerox Secure Access Administration Guide 4
Contents
Import and Synchronize User Accounts . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
Use ADS to Import Existing Users. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34
Adding Users from A Flat File Import . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 35
Add. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
Delete . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 36
Modify. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Creating Accounts Manually . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 37
Monitor Authentication Events . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 38
Configure the Release My Documents Custom Service . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 39
Adding the Release My Documents Custom Service to the MFP . . . . . . . . . . . . . . . . . . . . . . . . . 40
Release My Documents End-User Workflow . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 40
5Appendices
Directory Synchronization Access Permissions . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 43
Resetting an Authentication Device . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
Port Assignments. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 44
Troubleshooting. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 45
Troubleshooting the Release My Documents Custom Service Installation . . . . . . . . . . . . . . . . . . . 48
Accessing the Release My Documents Screen . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
Setting the Number of Copies for a Print Job . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 49
Ending a User Session. . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 50
Xerox Secure Access Administration Guide5

Safety Notes

Read these safety notes carefully to ensure you operate the equipment safely and in compliance with applicable legislation.
The equipment has been designed and tested to meet strict safety requirements. These include safety agency approval, and compliance to established environmental standards.
Please read the following instructions carefully before operating the equipment and refer to them as needed to ensure continued safe operation.
WARNING: Any unauthorized alteration, which may include the addition of new functions or
connection of external devices, may impact the product certification. Please contact your authorized local dealer for more information

Electrical Supply

The power supply provided with the equipment must be operated from the type of electrical supply indicated on the data plate label. If you are not sure that your electrical supply meets the requirements, please consult your local power company for advice.
1
Xerox Secure Access Administration Guide 6
Safety Notes

WARNING - Electrical Safety Information

Use only the power supply supplied with this equipment.
Do not place this equipment where people might step on or trip on the power cord or its associated power supply.
Do not place objects on the power supply power cord.
If any of the following conditions occur, switch off the power to the equipment immediately and disconnect the power cord from the electrical outlet. Call an authorized local service representative to correct the problem.
The equipment emits unusual odors.
The power cord is damaged or frayed.
A wall panel circuit breaker, fuse, or other safety device has been tripped.
The equipment is exposed to water.
Any part of the equipment is damaged.

Disconnect Device

The power cable to the power supply is the disconnect device for this equipment. To remove all electrical power from the equipment, disconnect the power cable from the electrical outlet.
Xerox Secure Access Administration Guide7
Safety Notes

Regulatory Information

Radio Frequency Emissions

United States, Canada
Note: This equipment has been tested and found to comply with the limits for a Class B digital
device, pursuant to part 15 of the FCC Rules. These limits are designed to provide reasonable protection against harmful interference in a residential installation. This equipment generates, uses and can radiate radio frequency energy and, if not installed and used in accordance with the instructions, may cause harmful interference to radio communications. However, there is no guarantee that interference will not occur in a particular installation. If this equipment does cause harmful interference to radio or television reception, which can be determined by turning the equipment off and on, the user is encouraged to try to correct the interference by one or more of the following measures:
Reorient or relocate the receiving antenna.
Increase the separation between the equipment and receiver.
Connect the equipment into an outlet on a circuit different from that to which the receiver is connected.
Consult the dealer or an experienced radio/TV technician for help.
Shielded interface cables must be used with this equipment to maintain compliance with FCC regulations in the United States
Canada
This Class "B" digital apparatus complies with Canadian ICES-003.
Cet appareil Numérique de la classe "B" est conforme à la norme NMB-003 du Canada.
Xerox Secure Access Administration Guide 8
Safety Notes
Europe
The CE mark applied to this product symbolizes XEROX’s declaration of conformity with the following applicable Directives of the European Union, as of the dates indicated:
December 12, 2006: Council Directive 2006/95/EC as amended. Approximation of the laws of the
member states related to low voltage equipment.
December 15, 2004: Council Directive 2004/108/EC as amended. Approximation of the laws of the
member states related to electromagnetic compatibility.
March 9,1999: Council Directive 99/5/EC, on radio equipment and telecommunications terminal
equipment and the mutual recognition of the conformity.
A full declaration of conformity, defining the relevant directives and referenced standards, can be obtained from your XEROX Limited representative.
WARNINGS:
In order to allow this equipment to operate in proximity to Industrial Scientific and Medical (ISM) equipment, the external radiation from the ISM equipment may have to be limited or special mitigation measures taken.
Shielded interface cables must be used with this product to maintain compliance with Council Directive 89/336/EEC.
"Regulatory information for RFID"
Readers provide with this product generates 13.56 MHz using an Inductive Loop System as a Radio Frequency Identification device (RFID). This RFID device complies with the requirements specified in FCC Part 15, Industry Canada RSS-210, European Council Directive 99/5/EC, and all applicable local laws and regulations.
Operation of this device is subject to the following two conditions: (1) this device may not cause harmful interference, and (2) this device must accept any interference received, including interference that may cause undesired operation.
Changes or modifications to this equipment not specifically approved by the Xerox Corporation may void the user’s authority to operate this equipment.
Xerox Secure Access Administration Guide9
Safety Notes

Product Recycling and Disposal

If you are managing the disposal of your equipment, please note that the product contains lead, mercury and other materials whose disposal may be regulated due to environmental considerations in certain countries or states. The presence of lead and mercury is fully consistent with global regulations applicable at the time that the product was placed on the market.

European Union

Disposal Information for Commercial Users
Application of this symbol on your equipment is confirmation that you must dispose of this equipment in compliance with agreed national Procedures.
In accordance with European legislation end of life electrical and electronic equipment subject to disposal must be managed within agreed procedures.
Prior to disposal please contact your local dealer or Xerox representative for end of life take back information.
North America (USA, Canada)
Xerox operates a worldwide equipment take back and reuse/recycle program. Contact your Xerox sales representative (1-800-ASK-XEROX) to determine whether this Xerox product is part of the program. For more information about Xerox environmental programs, visit http://www.xerox.com/environment
If you are managing the disposal of your Xerox product, please note that the product may contain lead, mercury, Perchlorate, and other materials whose disposal may be regulated due to environmental considerations. The presence of these materials is fully consistent with global regulations applicable at the time that the product was placed on the market. For recycling and disposal information, contact your local authorities. In the United States, you may also refer to the Electronic Industries Alliance web site: http://www.eiae.org
Perchlorate Material – This product may contain one or more Perchlorate-containing devices, such as batteries. Special handling may apply; please see http://www.dtsc.ca.gov/hazardouswaste/perchlorate
Xerox Secure Access Administration Guide 10
Safety Notes
Disposal Information for Domestic Users
Application of this symbol on your equipment is confirmation that you should not dispose of the equipment in the normal household waste stream.
In accordance with European legislation, end of life electrical and electronic equipment subject to disposal must be segregated from household waste.
Private households within EU Member States may return used electrical and electronic equipment to designated collection facilities free of charge. Please contact your local disposal authority for information.
In some Member States when you purchase new equipment your local retailer may be required to take back your old equipment free of charge. Please ask your retailer for information.
Other Countries
Please contact your local waste authorities and request disposal guidance.

EH&S Contact Information

Contact Information
For more information on Environment, Health, and Safety in relation to this Xerox product and supplies, please contact the following customer help lines:
USA: 1-800 828-6571
Canada: 1-800 828-6571
Europe: +44 1707 353 434
http://www.xerox.com/environment safety information US (Product Safety Information for US)
http://www.xerox.com/environment_europe safety information EU (Product Safety information for EU)
Xerox Secure Access Administration Guide11

Installation Checklist

The Xerox Secure Access Installation and Administration Guides include step-by-step instructions for installing and configuring the Secure Access server and MFPs. This chapter provides a table outlining the order in which the installation should occur based on the type of Secure Access hardware configuration starting with the Installation Guide.
Xerox Secure
Steps
(*) indicates Required step
Installation Guide
1. Read Chapter 3 Installation Overview * *
Xerox Secure Access with USB Card Reader
Access with Authentication Device and Card Reader
2
2. Chapter 4 Installing the Secure Access Server: Section 1. Preparing the Network and Database
3. Chapter 4 Installing the Secure Access Server: Section 2. Run the Installation Wizard
4. Chapter 5 Setting Up the Hardware: Step 1. Configure the Authentication Device IP Address
5. Chapter 5 Setting Up the Hardware: Step 2. Mount the Secure Access Authentication Device
6. Chapter 5 Setting Up the Hardware: Step 3. Connect the Hardware
7. Chapter 5 Setting Up the Hardware: Step 4. Mount/Connect the Secure Access USB Card Reader
Administration Guide
8. Read Chapter 3 Secure Access Overview * *
9. Chapter 4 Configuration Workflow: Step 1 - Configure Xerox MFP device to accept network authentication through the Xerox Secure Access mechanism
10. Chapter 4 - Add MFP devices to the Secure Access Database * *
**
**
Skip *
Skip *
Skip *
*Skip
**
11. Chapter 4 - Associate the MFP with a Secure Access Authentication Device
12. Chapter 4 - Configure Follow-You Printing (optional) * *
13. Chapter 4 - Set authentication parameters * *
Xerox Secure Access Administration Guide 12
Skip *
Installation Checklist
Xerox Secure
Steps
(*) indicates Required step
Xerox Secure Access with USB Card Reader
Access with Authentication Device and Card Reader
14. Chapter 4 - Import and synchronize user accounts * *
15. Chapter 4 - Configure the Release My Documents Custom Service
**
Xerox Secure Access Administration Guide13

Secure Access Overview

This chapter includes:
What is Secure Access? on page 15
Secure Access Components on page 16
Data Reader Support and User Workflow on page 20
Administering Secure Access on page 23
Language Support on page 23
3
After you install the Xerox Secure Access Unified ID System the Authentication Devices or Secure Access USB Card Reader, use this guide to add MFP (Multi­function Printer) devices to the Secure Access database, enabling communication between the Server and the Authentication Devices. Use this guide to perform advanced configuration tasks for all components and features of Secure Access.
This chapter provides information about:
The hardware and software components that comprise Xerox Secure Access
Accessing the Secure Access Manager to administer the system
®
Server and perform the physical setup of
Xerox Secure Access Administration Guide 14
Secure Access Overview
Secure Access Server
Secure Access Authentication
Device
Card Reader
Xerox MFP
Ethernet Connection
USB Card
Reader

What is Secure Access?

Secure Access Unified ID System® provides the ability to control access to the print, fax, copy and scan functions of Xerox Multifunction printers (MFP). When a user approaches a device controlled by Secure Access, they must either swipe their card or pass their card over the proximity card reader. The MFP front panel is active only when the user’s account information is authenticated by the Secure Access server.
Using a proprietary protocol (Convenience Authentication Protocol), the Secure Access Authentication Device contacts the Secure Access Server via an ethernet network connection to verify the user information gathered from the swipe or proximity card. If using a USB Card Reader the communication is from the MFP to the Secure Access Server directly. If the Secure Access Server verifies the user, the MFP device panel unlocks and is ready for use. If the user is not verified, the MFP remains locked and the user cannot perform any tasks at the device.
Figure 3-1: Secure Access Solution Components
If the user wants to scan documents, the Secure Access server provides the network user ID to the compatible MFP; the MFP can then use the ID to implement Single Sign-on functionality and automatically authenticate for scanning.
Xerox Secure Access Administration Guide15
Secure Access Overview
Card Reader
Secure Access Authentication
Device
Ethernet Connection
DCE
DRE
CAS
Mgmnt
To ol s
Secure Access Server

Secure Access Components

The solution requires two main components:
1. Secure Access Authentication Device, which is comprised of an Authentication Terminal and an
external card reader. Users do not access the Authentication Terminal.
The Card Reader is connected to the Authentication device via serial cable only, and is not attached directly to the MFP. Refer to the Installation Guide for placement and mounting instructions.
Figure 3-2: Secure Access Authentication Device components
or
1. Secure Access Server USB Card Reader, which is connected to the MFP. Refer to the Installation
Guide for placement and mounting instructions
2. Secure Access Server, which is comprised of the following components:
Core Authentication Server (CAS)
Device Control Engine (DCE)
•Document Routing Engine (DRE)
Secure Access Manager (Administrative Tools)
Note: You can install these components on a single server, or distributed across multiple servers. In
some deployments, you may also require more than one DCE or DRE. See the Installation Guide for complete details.
Figure 3-3: Secure Access Server Components
Xerox Secure Access Administration Guide 16
Loading...
+ 35 hidden pages
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use