Instruction/ maintenance manual of the product 5740 Xerox
Go to page of 50
Xerox W orkCentr e 5735/5740/5745/5755/5765/5775/5790 Informa tion Assur ance D isclosu re Paper Version 2 .0 Prepared by: Larry Kovnat Xerox Corporation 1350 Jefferson Road Rochester, New York 14623.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 2 of 50 ©2010 Xerox C orporation . All rights re served. Xerox an d the sph ere of connectiv ity desi gn are trademarks of Xerox Corporati on in the U nited States and /or other c ounties.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 3 of 50 1. INTRODUCTION .........................................................................................................
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 4 of 50 3.2. Login and Aut henticati on Method s .......... .............. ............... ............... ............... ......
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 5 of 50 1. Int roduct ion The WorkCentr e 5735/5740 /5745/57 55/5765/577 5/5790 multifunction systems are among the latest versions of Xerox copier and multi function devices for the general office.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 6 of 50 2. De vice Desc ripti on This product consists of an in pu t document handler and scanner, marking engine including paper path, controller, and user interface.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 7 of 50 P C I B u s Optical interface B u t t o n s a n d D i s p l a y P h y s i c a l e x t e r n a l i n t e r f a c e Button and TOE internal wiring (proprietary) Figure 2-2 System func tional block diagram 2.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 8 of 50 Security Function Subsystem Security Man agement Controller Graphical User Interface Table 1 Security Fu nctions allocated to Subsystems 2.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 9 of 50 Non-Volatile Memor y Type (Flash, E EPROM, etc) Size User Modifiable (.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 10 of 50 2.2.3. External Connections Figure 2-3 Back pa nel connections Interface Description / Usage FAX line 1, RJ-1 1 Supports F AX Modem T.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 11 of 50 USB Target port Direct-connect printing; Xerox diagnostic tool s (PSW and CAT) and Xerox copier assistant Table 5 USB Por ts 2.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 12 of 50 Volatile Memory Descr iption Type (SRAM, DRAM, etc) Size User Modifi .
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 13 of 50 Table 8 User Int erface memory components 2.6. Ma rking Engine (a lso known as t he Image Output Term inal or IOT) 2.6.1.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 14 of 50 Figure 2-4 Controlle r Operating System layer components.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 15 of 50 2.7.3. Network Prot ocols Figure 2-5 is an interface diagra m depicting the protocol stacks supported by th e device, annotated according to the DARPA model.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 16 of 50 Figure 2-6 IPv6 Net work Protocol Stack 2.8. Logic al Access 2.8.1. Network Prot ocols The supported network protocol s are listed in Appendix D and are implement ed to industry standard specifications (i.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 17 of 50 device-initiated operations (like scanning) cannot assume the existence of the tunnel unles s a print job (or other client initiated action) has been previou sly run since the last boot at either end of the connectio n.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 18 of 50 2.8.2.4. Port 80, H TTP The embedded web pages com municate to the ma.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 19 of 50 2.8.2.5. Port 88, K erberos This port is only open when the device is.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 20 of 50 2.8.2.7. Ports 137, 138, 139, NETBIOS For print jobs, these ports suppor t the submission of files for printing as well as support Networ k Authentication through SMB.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 21 of 50 2.8.2.13. Port 515, LP R This is the standard LPR printing port, whi ch only supports IP printing.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 22 of 50 3. Sys tem Acc ess 3.1. Auth entication Mode l The authenti cation model allows for both l ocal and netw ork authentic ation and a uthorization.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 23 of 50 Figure 3-1 Authe ntication and Authorization schematic.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 24 of 50 3.2. Login and Authentic ation Methods There are a number of m ethods for different types of users to be authentica ted.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 25 of 50 2) The Domain Contr oller responds back to the device whether or not the user was successfu lly authenticat ed. If (2) is succ essful, steps 3 – 5 proceed as described in steps 4 – 6 of th e Kerberos s ection.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 26 of 50 3) The devi ce sends an authe ntication request di rectly to the Domain Controller thr ough th e router using th e IP addres s of the Doma in Control ler.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 27 of 50 3.4. Dia gnostics 3.4.1. Service [All product configurations] To access onb oard diagn ostics from th e local user in terface, Xerox service representa tives must enter a unique 4-digi t password.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 28 of 50 3.4.4.1. Access The Xerox S ervice Technici an must be a uthenticated t wice: 1.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 29 of 50 3) T he PS W wil l s end a req uest f or Dia gno st ic ser vic e a nd a p ass word.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 30 of 50 3.4.5. Summ ary As stated ab ove, accessib ility of custom er documents, fi les or network resources is i mpossible via the PSW.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 31 of 50 4. Sec urity As pects of Select ed Featu res 4.1. Audit Log The device mai ntains a sec urity audit l og. Recordin g of securit y audit log data ca n be e nabled or disabl ed by the SA.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 32 of 50 Event ID Event d escription Entry Data 8 IFAX Job name User Name Comp.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 33 of 50 Event ID Event d escription Entry Data 22 USB Thumbdrive UserName Dev.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 34 of 50 Event ID Event d escription Entry Data 37 SSL UserName Device name Device serial number Completion status (Enabled/Disabled).
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 35 of 50 Event ID Event d escription Entry Data 53 CPSR Backup File Name User .
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 36 of 50 Event ID Event d escription Entry Data 2 System shutdown Device name .
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 37 of 50 Event ID Event d escription Entry Data 13 Efax Job name User Name Com.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 38 of 50 Event ID Event d escription Entry Data 29 Network User Login UsereNam.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 39 of 50 Event ID Event d escription Entry Data 44 SW upgrade Device name Devi.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 40 of 50 On demand, th e SA will be a ble to downloa d a report tha t shows acti vity for all of the users. The SA can add, modify or remove us ers and their a llocations at any point.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 41 of 50 4.5.1. Alg orithm The overwri te mechanism for both IIO a nd ODIO con forms to the U.S. Department o f Defense D irective 5200.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 42 of 50 5. Res ponses to Know n Vulne rabiliti es 5.1. Sec urity @ Xerox (www.xerox. com/security) Xerox maintains an evergr een public web page that contains the latest security information pertaining to its products.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 43 of 50 6. APP ENDICES 6.1. App endix A – Abbre viations API Application Programming Interface AMR Automatic Meter Reads ASIC Application-Specific Integrated Circuit.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 44 of 50 NVRAM Non-Volatile Random Access Memor y NVM Non-Volatile Memory ODIO.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 45 of 50 6.2. App endix B – Supp orted MIB Objects NOTES : (1) The number of obje cts shown p er MIB group r epresents the number of obje cts defined b y the IETF standard for that MI B group.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 46 of 50 RFC 1759 - Printe r MIB Group WorkCentre RFC 1213 - Syst em group sup.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 47 of 50 RFC 1213 - MIB-II for TCP/IP gr oup WorkCentre Transmission group [ 0.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 48 of 50 6.3. App endix C –Stan dards Controller Har dware PCI Specification (PCI Local Bus Specification Revision 2.1) 100 Megabit Ethernet (IEEE 802.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 49 of 50 Function RFC/Standard Document Printing Application (DPA ) 10175 Appl.
XEROX WorkCentre 5735/5740/5745/5755/ 5765/5775/579 0 Information Assurance Disclos ure Paper Ver. 2.00, M arch 2011 Page 50 of 50 6.4. App endix E – Referen ces Kerberos FAQ http://www.nr l.navy.mil/CCS/ people/kenh/k erberos- faq.html IP port numb ers http://www.
An important point after buying a device Xerox 5740 (or even before the purchase) is to read its user manual. We should do this for several simple reasons:
If you have not bought Xerox 5740 yet, this is a good time to familiarize yourself with the basic data on the product. First of all view first pages of the manual, you can find above. You should find there the most important technical data Xerox 5740 - thus you can check whether the hardware meets your expectations. When delving into next pages of the user manual, Xerox 5740 you will learn all the available features of the product, as well as information on its operation. The information that you get Xerox 5740 will certainly help you make a decision on the purchase.
If you already are a holder of Xerox 5740, but have not read the manual yet, you should do it for the reasons described above. You will learn then if you properly used the available features, and whether you have not made any mistakes, which can shorten the lifetime Xerox 5740.
However, one of the most important roles played by the user manual is to help in solving problems with Xerox 5740. Almost always you will find there Troubleshooting, which are the most frequently occurring failures and malfunctions of the device Xerox 5740 along with tips on how to solve them. Even if you fail to solve the problem, the manual will show you a further procedure – contact to the customer service center or the nearest service center