Lexmark XC9465 Security White Paper - Page 55

Lexmark Contact Authentication Device

Get Lexmark XC9465 PDF manuals and user guides View all Lexmark XC9465 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 55 highlights

Solutions 55 The Lexmark CAC or SIPRNet solution for SFPs and MFPs follows the same protocol as current laptop and PC CAC authentication processes. The onboard CAC or SIPRNet reader and user-friendly eTask MFP touch screen makes authentication simple and secure. The following are the steps for the authentication process: 1 Insert your CAC or SIPRNet card in the MFP's card reader. You are prompted to enter your PIN. 2 The MFP validates the PIN against the CAC or SIPRNet card. It then extracts the PKI certificates from the CAC or SIPRNet card and sends them to the Windows domain controller for validation. The domain controller response can be validated at the MFP or against an OCSP responder or repeater. 3 When the card is validated, the MFP home screen appears, and user preferences and other system parameters are also implemented. You can then perform any of the MFP functions, such as Scan to E-mail (digitally signed and encrypted), Scan to Home (or Other) Network Folder, Scan to Document Management System and so on. By leaving the CAC or SIPRNet card in the reader, no additional login is required to perform more MFP functions. You remain logged in as long as your CAC or SIPRNet card stays in the reader. Removing your card returns the MFP to its locked, secure state. Note: Lexmark PIV authentication meets all current Homeland Security Presidential Directive-12 (HSPD-12) standards. Lexmark Contact Authentication Device Overview The Lexmark Contact Authentication Device provides enhanced control access to network printers and MFPs with secure authentication at print release. The device easily connects on the front of the printer or MFP and instantly provides a more secure environment for your business. The carefully engineered features of the device enhance security and prevent unauthorized users from gaining access to sensitive information. With a single touch, administrators can use the Lexmark Contact Authentication Device to manage access to devices and authorize access to specific functions including e-mail, fax, copy, or scan. Plus, the device provides full compliance with all major industry standards and works seamlessly with virtually every contact smart card.

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
The Lexmark CAC or SIPRNet solution for SFPs and MFPs follows the same protocol as current laptop and PC
CAC authentication processes. The onboard CAC or SIPRNet reader and user-friendly eTask MFP touch screen
makes authentication simple and secure.
The following are the steps for the authentication process:
1
Insert your CAC or SIPRNet card in the MFP’s card reader. You are prompted to enter your PIN.
2
The MFP validates the PIN against the CAC or SIPRNet card. It then extracts the PKI certificates from the
CAC or SIPRNet card and sends them to the Windows domain controller for validation. The domain controller
response can be validated at the MFP or against an OCSP responder or repeater.
3
When the card is validated, the MFP home screen appears, and user preferences and other system
parameters are also implemented. You can then perform any of the MFP functions, such as Scan to E-mail
(digitally signed and encrypted), Scan to Home (or Other) Network Folder, Scan to Document Management
System and so on.
By leaving the CAC or SIPRNet card in the reader, no additional login is required to perform more MFP functions.
You remain logged in as long as your CAC or SIPRNet card stays in the reader. Removing your card returns the
MFP to its locked, secure state.
Note:
Lexmark PIV authentication meets all current Homeland Security Presidential Directive-12 (HSPD-12)
standards.
Lexmark Contact Authentication Device
Overview
The Lexmark Contact Authentication Device provides enhanced control access to network printers and MFPs
with secure authentication at print release. The device easily connects on the front of the printer or MFP and
instantly provides a more secure environment for your business. The carefully engineered features of the device
enhance security and prevent unauthorized users from gaining access to sensitive information.
With a single touch, administrators can use the Lexmark Contact Authentication Device to manage access to
devices and authorize access to specific functions including e-mail, fax, copy, or scan. Plus, the device provides
full compliance with all major industry standards and works seamlessly with virtually every contact smart card.
Solutions
55