* Enter the name of the utility key. You can search descriptions of utility keys.
Enhanced Security Mode
To display: [Utility][Administrator][Security][Enhanced Security Mode]
Select whether to enable the Enhanced Security Mode.
If you enable the Enhanced Security Mode, the various security functions are forcibly configured. This allows you to ensure higher-level security of data management. For details, contact your service representative.
To enable the enhanced security mode, the following settings must have been configured.
Prerequisite settings | Check Job |
|---|---|
[User Auth/Account Track] - [Authentication Type] - [User Authentication] | Select an option other than [OFF]. (When external server authentication is used, only Active Directory is available as the server type.) |
[Security] - [Administrator Password Setting] | Set a password complying with password rules. |
In Web Connection, register the certificate. | For details, refer to [Encrypting Communications] . |
Service settings | Service settings must be configured by your service representative. For details, contact your service representative. |
If you enable the Enhanced Security Mode, the following settings are forcibly changed.
Setting items in Administrator Settings | Settings to forcibly changed |
|---|---|
[Security] - [Restrict User Access] - [Registering and Changing Addresses]* | Set to [Restrict]. |
[User Auth/Account Track] - [Authentication Type] - [Public User Access]* | Set to [Restrict]. |
[User Auth/Account Track] - [User Authentication Settings] - [Administrative Setting] - [User Name List]* | Set to [OFF]. |
[User Auth/Account Track] - [Print without Authentication]* | Set to [Restrict]. |
[User Auth/Account Track] - [User/Account Common Setting] - [Counter Remote Control] | Set to OFF. |
[User Auth/Account Track] - [URL display enable setting] | Set to OFF. |
[User Auth/Account Track] - [Simple Authentication setting] - [Simple Authentication setting]* | Set to OFF. |
[Network] - [FTP Setting] - [FTP Server Setting] - [FTP Server]* | Set to OFF. |
[Network] - [E-mail Setting] - [E-mail TX (SMTP)] - [Server load reduction transmission method] | When [Scan TX by Download URL method only when maximum limit is exceeded] or [Always Scan TX by Download URL method] is selected, this option is set to [OFF]. |
[Network] - [E-mail Setting] - [S/MIME] - [S/MIME Comm.Setting]* |
|
[Network] - [SNMP Setting] - [SNMP v1/v2c Setting] - [Write Community Name]* | Set to OFF. |
[Network] - [SNMP Setting] - [SNMP v3 Setting]* | [Security Level] for read and write allowed users is set to [auth-password/priv-password]. The Security Level can be changed to [auth-password]. |
[Network] - [TCP Socket Setting] - [Use SSL/TLS] | Set to ON. |
[Network] - [WebDAV Settings] - [WebDAV Server Settings] - [SSL Setting] | Set to [SSL Only]. |
[Network] - [Web Browser Setting] - [Web Browser Setting]* | Set to OFF. |
[Network] - [Remote Panel Settings]* |
|
[Network] - [E-mail Setting] - [E-mail RX Print] - [E-mail RX Print]* | Set to OFF. |
[Network] - [Machine Update Settings] - [Machine Auto Update setting]* | This function is not available. |
[Network] - [IWS Settings] - [IWS Settings]* | Set to OFF. |
[Fax Settings] - [Report Settings] - [Tx Result Report Print Settings] - [Report File Attachment]* | Set to [Do Not Attach]. |
[Network] - [OpenAPI Setting] - [OpenAPI Setting] - [SSL/Port Settings] | Set to [SSL Only]. |
[System Settings] - [System Connection Setting] - [Mobile Connection Settings] - [Simple Connection Setting]* |
|
[Security] - [Administrator Password Change Permission Setting] - [Password Change Permission] | Set to OFF. |
[Security] - [User Box Administrator Setting]* | Set to OFF. |
[Security] - [USB Connection Permission setting] | Set to [Restrict]. |
[Security] - [Firmware Update (USB) Permission Setting] | Set to [Password Priority]. |
[Security] - [Secure Boot Function Set.]* | Set to [Enable]. |
[Security] - [User box usage restriction] - [Public User Box] | If you approve the deletion of all the documents in a Public User Box, this option is set to [OFF]. |
[Security] - [Security Details] - [Password Rules]* | Set to ON. If this option cannot be set to ON, the enhanced security mode is not available. |
[Security] - [Security Details] - [Prohibit Functions]* |
|
[Security] - [Security Details] - [Confidential Document Access Method] | Set to [Mode 2]. |
[Security] - [Security Details] - [Print Data Capture] | Set to OFF. |
[Security] - [Security Details] - [Hide Personal Information (MIB)] | Set to ON. |
[Security] - [Security Details] - [Initialize]* | If you select [Network Settings] and start it, the Enhanced Security Mode is canceled. |
[Remote Access Setting] - [Import/Export User Data] | Set to OFF. |
[Maintenance] - [Import/Export] in Web Connection | The password must be configured. |
[Security] - [PKI Settings] - [Device Certificate Setting] in Web Connection | [Requesting Certificate] is hidden. |
[Security] - [PKI Settings] - [SSL Setting] in Web Connection* |
|
[Security] - [PKI Settings] - [Protocol Setting] in Web Connection | [Protocol 1]: [SSL], [Protocol 2]: The certificate is registered in the [http Server]. |
Remote Diagnosis System | Some functions may be disabled. For details, contact your service representative. |
Preview Secure Document User Box | Only the list is displayed before the password authentication is performed. |
[Security] - [Security Details] - [Maintenance Mode Access] | Set to [Restrict]. |
Memory RX User Box | Only the administrator can print, send, or delete documents in the Memory RX User Box. |
Screen view style | Switched to the classic style. |
Tips
If you change a setting item (marked by an asterisk *) that has been changed synchronously with [Enhanced Security Mode], a confirmation dialog box appears, and the Enhanced Security Mode is canceled.- A setting that has been forcibly changed when the [Enhanced Security Mode] was enabled will not be changed if you disable the [Enhanced Security Mode].
- Once the password rules have been enabled, an item for which a password that do not comply with the rules has been configured will result in authentication failure.