Table of Contents
Advertisement
SAMSUNG MFP SECURITY
7.1
Authentication
Authentication is used by Samsung MFPs to confirm that a user has rights to access the MFP. MFP authentication includes
the following security checks:
•
System Authentication
•
Local Authentication
•
N/W Authentication
•
Employee Badge / HID Proximity Card
•
Smartcard Authentication / Common Access / PIV Card
7.1.1
System Authentication
Samsung MFPs require the system administrator to enter their authentication information before allowing access to the
system management menus. The System Administrators role includes SyncThru
local system administrator. The authentication process for the SyncThru
and a password on the user interface, the authentication process for the local MFP system administrator uses a PIN
number on the MFP user interface. The system administrator must enter a PIN to access the system administration
functions. The SyncThru
Service UI, and the local administrator must type their PIN number in to the MFP UI. The security software displays
asterisks instead of characters to hide the characters they enter.
The authentication process is delayed by the MFP UI for three minutes when 3 wrong PINs are entered in succession.
When 3 wrong PINs are entered in the SyncThru
software will send an error message to the browser session screen.
7.1.2
Local Authentication
When the Authentication mode is enabled, a local MFP user must enter a password to access the menu. The password for
a local MFP user can be up to 15 characters in length, and it can include alphabetic, numeric and special characters. The
password complexity consists of upper case letters, lower case letters, numbers and special characters.
7.1.3
Network Authentication
The Samsung MFP prevents unauthorized use of the network options (network scanning, scan-to-e-mail, and scan-to-
server). The MFP System Administrator sets the network options available for each user. To access a network service, the
user must provide a user name and password, which is then validated by the designated authentication server.
Network authentication includes 802.1x, Kerberos, SMB and LDAP. LDAP (Lightweight Directory Access Protocol) is a
software protocol for enabling anyone to locate organizations, individuals, and other resources such as files and devices on
a network, whether on the public Internet or on a corporate intranet.
7.1.4
XOA –E / XOA Web Authentication
The Samsung MFP additionally provides XOA-E / XOA Web authentication to prevent unauthorized use of the network
options (network scanning, scan-to-e-mail, and scan-to-server). XOA-E authentication server is located inside MFP and
XOA Web authentication server is located outside MFP. That is, the Samsung MFP provides various authentication
methods which are implemented by ISVs
Page - 17
TM
Web Service administrator must enter their account and password in to the SyncThru
TM
Copyright 2014 Samsung Electronics Co., Ltd., All rights
TM
Web Service administrator uses an account
Web Service UI from one particular browser session, the security
WHITE PAPER
TM
Web Service administrators and the
reserved.
TM
Web
Advertisement
Table of Contents
