Ricoh Mp C3001 Instruction Manual
Have a look at the manual Ricoh Mp C3001 Instruction Manual online for free. It’s possible to download the document as PDF or print. UserManuals.tech offer 127 Ricoh manuals and user’s guides for free. Share the user manual or guide on Facebook, Twitter or Google+.
Page 10 of 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Client computer Performs as a client of the TOE if it is connected to the LAN, and users can remotely operate the MFP from the client computer. The possible remote operations from the client computer are as follows: - Various settings for the MFP using a Web browser installed on the client computer, - Operation of documents using a Web browser installed on the client computer, - Storage and printing of documents using the printer driver installed on the client computer, - Storage and faxing of documents using the fax driver installed on the client computer. Telephone line A public line for the TOE to communicate with external faxes. Firewall A device to prevent the office environment from network attacks via the Internet. FTP Server A server used by the TOE for folder transmission of the stored documents in the TOE to its folders. SMB Server A server used by the TOE for folder transmission of the stored documents in the TOE to its folders. SMTP Server A server used by the TOE for e-mail transmission of the stored documents in the TOE. External Authentication Server A server that identifies and authenticates the TOE user with Windows authentication (Kerberos authentication method). This server is only used when External Authentication is applied. The TOE identifies and authenticates the user by communicating with the external authentication server via LAN. RC Gate An IT device used for @Remote. The function of RC Gate for @Remote is to relay communications between the MFP and maintenance centre. A transfer path to other external interface for input information from the RC Gate via network interface is not implemented in the TOE. The RC Gate products include Remote Communication Gate A, Remote Communication Gate Type BN1, and Remote Communication Gate Type BM1. 1.3.3 Major Security Features of TOE The TOE stores documents in it, and sends and receives documents to and from the IT devices connected to the LAN. To ensure provision of confidentiality and integrity for those documents, the TOE has the following security features:
Page 11 of 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. - Audit Function - Identification and Authentication Function - Document Access Control Function - Use-of-Feature Restriction Function - Network Protection Function - Residual Data Overwrite Function - Stored Data Protection Function - Security Management Function - Software Verification Function - Fax Line Separation Function 1.4 TOE Description This section describes Physical Boundary of TOE, Guidance Documents, Definition of Users, Logical Boundary of TOE, and Protected Assets. 1.4.1 Physical Boundary of TOE The physical boundary of the TOE is the MFP, which consists of the following hardware components (shown in Figure 2): Operation Panel Unit, Engine Unit, Fax Unit, Controller Board, HDD, Ic Ctlr, Network Unit, USB Port, SD Card Slot, and SD Card.
Page 12 of 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Figure 2 : Hardware Configuration of the TOE Controller Board The Controller Board is a device that contains Processors, RAM, NVRAM, Ic Key, and FlashROM. The Controller Board sends and receives information to and from the units and devices that constitute the MFP, and this information is used to control the MFP. The information to control the MFP is processed by the MFP Control Software on the Controller Board. The following describes the components of the Controller Board: - Processor A semiconductor chip that performs basic arithmetic processing for MFP operations. - RAM A volatile memory medium which is used as a working area for image processing such as compressing/decompressing the image data. It can also be used to temporarily read and write internal information. - NVRAM A non-volatile memory medium in which TSF data for configuring MFP operations is stored. - Ic Key A security chip that has the functions of random number generation, cryptographic key generation
Page 13 of 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. and digital signature. It has the memory medium inside, and the signature root key is installed before the TOE is shipped. - FlashROM A non-volatile memory medium in which the following software components are installed: System/Copy, Network Support, Scanner, Printer, Fax, RemoteFax, Web Support, Web Uapl, NetworkDocBox, animation, PCL, OptionPCLFont, LANG0, and LANG1. These are part of the TOE and are included in the MFP Control Software. Operation Panel Unit (hereafter Operation Panel) The Operation Panel is a user interface installed on the TOE and consists of the following devices: key switches, LED indicators, an LCD touch screen, and Operation Control Board. The Operation Control Board is connected to the key switches, LED indicators, and LCD touch screen. The Operation Panel Control Software is installed on the Operation Panel Control Board. The Operation Panel Control Software performs the following: 1. Transfers operation instructions from the key switches and the LCD touch screen to the Controller Board. 2. Controls the LEDs and displays information on the LCD touch screen according to display instructions from the Controller Board. OpePanel, which is one of the components that constitute the TOE, is the identifier for the Operation Panel Control Software. Engine Unit The Engine Unit consists of Scanner Engine that is an input device to read paper documents, Printer Engine that is an output device to print and eject paper documents, and Engine Control Board. The Engine Control Software is installed in the Engine Control Board. The Engine Control Software sends status information about the Scanner Engine and Printer Engine to the Controller Board, and operates the Scanner Engine or Printer Engine according to instructions from the MFP Control Software. Engine, which is one of the components that constitute the TOE, is the identifier for the Engine Control Software. Fax Unit The Fax Unit is a unit that has a modem function for connection to a telephone line. It also sends and receives fax data to and from other fax devices using the G3 standard for communication. The Fax Unit sends and receives control information about the Controller Board and Fax Unit and fax data. FCU, which is one of the components that constitute the TOE, is the identifier of the Fax Unit. HDD The HDD is a hard disk drive that is a non-volatile memory medium. It stores documents, login user names and login passwords of normal users.
Page 14 of 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Ic Ctlr The Ic Ctlr is a board that implements data encryption and decryption functions. It is provided with functions for HDD encryption realisation. Network Unit The Network Unit is an external interface to an Ethernet (100BASE-TX/10BASE-T) LAN. USB Port The USB Port is an external interface to connect a client computer to the TOE for printing directly from the client computer. During installation, this interface is disabled. SD Card/SD Card Slot The SD Card is a memory medium in which Data Erase Std (MFP Control Software) are stored. When used, the SD Card is inserted into the SD Card Slot that is inside the MFP. Only the customer engineer is allowed to open the cover and insert the SD Card into the SD Card Slot during installation. 1.4.2 Guidance Documents The following sets of user guidance documents are available for this TOE: [English version-1], [English version-2], [English version-3], and [English version-4]. Selection of the guidance document sets depends on the sales area and/or sales company. Guidance document sets will be supplied with individual TOE component. Details of the document sets are as follows. [English version-1] Table 2 : Guidance for English Version-1 TOE Components Guidance Documents for Product MFP - C9130/C9135/C9145/C9145A/C9155/C9155A C9130G/C9135G/C9145G/C9145AG/C9155G/C9155AG LD630C/LD635C/LD645C/LD645CA/LD655C/LD655CA LD630CG/LD635CG/LD645CG/LD645CAG/LD655CG/LD655CAG Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001G/C3501G/C4501G/C4501AG/C5501G/C5501AG Operating Instructions About This Machine D088-7603A - C9130/C9135/C9145/C9145A/C9155/C9155A C9130G/C9135G/C9145G/C9145AG/C9155G/C9155AG LD630C/LD635C/LD645C/LD645CA/LD655C/LD655CA LD630CG/LD635CG/LD645CG/LD645CAG/LD655CG/LD655CAG Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001G/C3501G/C4501G/C4501AG/C5501G/C5501AG
Page 15 of 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Operating Instructions Troubleshooting D088-7653A - Quick Reference Copy Guide D088-7526 - Quick Reference Printer Guide D088-7805 - Quick Reference Scanner Guide D088-7886 - App2Me Start Guide D085-7906B - Notes for Users D572-7010 - Notes for Users D088-7608 - Notes for Users D088-7759A - Manuals for Users Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9 155A/C9155AG LD630C/LD630CG/LD635C/LD635CG/LD645C/LD645CG/LD645CA/LD645CAG/ LD655C/LD655CG/LD655CA/LD655CAG D089-6906A - Manuals for Administrators Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9 155A/C9155AG LD630C/LD630CG/LD635C/LD635CG/LD645C/LD645CG/LD645CA/LD645CAG/ LD655C/LD655CG/LD655CA/LD655CAG D089-6907A - To Users of This Machine D029-7904 - Operating Instructions Notes on Security Functions D088-7706 - Notes for Administrators: Using this Machine in a Network Environment Compliant with IEEE Std. 2600.1 TM-2009 D088-7707 - Help 83NHBUENZ1.20 v116 FCU - Quick Reference Fax Guide D545-8506 [English version-2] Table 3 : Guidance for English Version-2 TOE Components Guidance Documents for Product MFP - C9130/C9135/C9145/C9145A/C9155/C9155A C9130G/C9135G/C9145G/C9145AG/C9155G/C9155AG LD630C/LD635C/LD645C/LD645CA/LD655C/LD655CA/ LD630CG/LD635CG/LD645CG/LD645CAG/LD655CG/LD655CAG
Page 16 of 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001G/C3501G/C4501G/C4501AG/C5501G/C5501AG Operating Instructions About This Machine D088-7609 - C9130/C9135/C9145/C9145A/C9155/C9155A C9130G/C9135G/C9145G/C9145AG/C9155G/C9155AG LD630C/LD635C/LD645C/LD645CA/LD655C/LD655CA/ LD630CG/LD635CG/LD645CG/LD645CAG/LD655CG/LD655CAG Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001G/C3501G/C4501G/C4501AG/C5501G/C5501AG Operating Instructions Troubleshooting D088-7657 - Quick Reference Copy Guide D088-7529 - Quick Reference Printer Guide D086-7800 - Quick Reference Scanner Guide D088-7889 - App2Me Start Guide D085-7905B - Notes for Users D572-7010 - Notes for Users D088-7404 - Manuals for Users Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/ MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9 155A/C9155AG LD630C/LD630CG/LD635C/LD635CG/LD645C/LD645CG/LD645CA/LD645CAG/L D655C/LD655CG/LD655CA/LD655CAG D089-6906A - Manuals for Administrators Aficio MP C3001/MP C3001G/MP C3501/MP C3501G/MP C4501/MP C4501G/MP C4501A/MP C4501AG/ MP C5501/MP C5501G/MP C5501A/MP C5501AG C9130/C9130G/C9135/C9135G/C9145/C9145G/C9145A/C9145AG/C9155/C9155G/C9 155A/C9155AG LD630C/LD630CG/LD635C/LD635CG/LD645C/LD645CG/LD645CA/LD645CAG/L D655C/LD655CG/LD655CA/LD655CAG D089-6907A - To Users of This Machine D029-7903 - Operating Instructions Notes on Security Functions D088-7708 - Notes for Administrators: Using this Machine in a Network Environment Compliant with IEEE Std. 2600.1 TM-2009 D088-7709 - Help 83NHBUENZ1.20 v116 FCU - Quick Reference Fax Guide D545-8506
Page 17 of 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. [English version-3] Table 4 : Guidance for English Version-3 TOE Components Guidance Documents for Product MFP - Quick Reference Copy Guide D088-7525 - Quick Reference Fax Guide D545-8505 - Quick Reference Printer Guide D088-7804 - Quick Reference Scanner Guide D088-7885 - App2Me Start Guide D085-7904B - Manuals for This Machine D081-7602 - Notes for Users D088-7430 - To Users of This Machine D029-7904 - Manuals for Users Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A A D089-6931A - Manuals for Administrators Security Reference Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A D089-6933A - Safety Information for MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A/Aficio MP C3001/Aficio MP C3501/Aficio MP C4501/Aficio MP C4501A/Aficio MP C5501/Aficio MP C5501A D088-7400A - Notes for Users D088-7420 - Operating Instructions Notes on Security Functions D088-7704 - Notes for Administrators: Using this Machine in a Network Environment Compliant with IEEE Std. 2600.1 TM-2009 D088-7705 - Help 83NHBUENZ1.20 v116 FCU - [English version-4] Table 5 : Guidance for English Version-4 TOE Components Guidance Documents for Product MFP - MP C3001/C3501/C4501/C4501A/C5501/C5501A
Page 18 of 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A Operating Instructions About This Machine D088-7605A - MP C3001/C3501/C4501/C4501A/C5501/C5501A MP C3001/C3501/C4501/C4501A/C5501/C5501A Aficio MP C3001/C3501/C4501/C4501A/C5501/C5501A Operating Instructions Troubleshooting D088-7655A - Quick Reference Copy Guide D088-7527 - Quick Reference Printer Guide D088-7805 - Quick Reference Scanner Guide D088-7887 - Notes for Users D088-7608 - Notes for Users D088-7759A - Notes for Users D060-7781 - App2Me Start Guide D085-7906B - Manuals for Users Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A D089-6908A - Manuals for Administrators Aficio MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A MP C3001/MP C3501/MP C4501/MP C4501A/MP C5501/MP C5501A D089-6909A - To Users of This Machine D029-7904 - Operating Instructions Notes on Security Functions D088-7706 - Notes for Administrators: Using this Machine in a Network Environment Compliant with IEEE Std. 2600.1 TM-2009 D088-7707 - Help 83NHBUENZ1.20 v116 FCU - Quick Reference Fax Guide D545-8507 1.4.3 Definition of Users This section defines the users related to the TOE. These users include those who routinely use the TOE (direct users) and those who do not (indirect users). The direct users and indirect users are described as follows:
Page 19 of 93 Copyright (c) 2011 RICOH COMPANY, LTD. All rights reserved. 1.4.3.1. Direct User The user referred to in this ST indicates a direct user. This direct user consists of normal users, administrators, and RC Gate. The following table (Table 6) shows the definitions of these direct users. Table 6 : Definition of Users Definition of Users Explanation Normal user A user who is allowed to use the TOE. A normal user is provided with a login user name and can use Copy Function, Fax Function, Scanner Function, Printer Function, and Document Server Function. Administrator A user who is allowed to manage the TOE. An administrator performs management operations, which include issuing login names to normal users. RC Gate An IT device connected to networks. RC Gate performs the @Remote Service Function of the TOE via RC Gate communication interface. Copy Function, Fax Function, Scanner Function, Printer Function, Document Server Function, and Management Function cannot be used. The administrator means the user registered for TOE management. According to its roles, the administrator can be classified as the supervisor and the MFP administrator. Up to four MFP administrators can be registered and selectively authorised to perform user management, machine management, network management, and file management. Therefore, the different roles of the management privilege can be allocated to multiple MFP administrators individually. The MFP administrator in this ST refers to the MFP administrator who has all management privileges (Table 7). Table 7 : List of Administrative Roles Definition of Administrator Management Privileges Explanation Supervisor Supervisor Authorised to delete and register the login password of the MFP administrator. User management privilege Authorised to manage normal users. This privilege allows configuration of normal user settings. Machine management privilege Authorised to specify MFP device behaviour (network behaviours excluded). This privilege allows configuration of device settings and view of the audit log. Network management privilege Authorised to manage networks and configure LAN settings. This privilege allows configuration of network settings. MFP administrator File management privilege Authorised to manage stored documents. This privilege allows access management of stored documents.