Beruflich Dokumente
Kultur Dokumente
4750/4050
2015. 4
Ver. 1.03
Revision history
After publication of this service manual, the parts and mechanism may be subject to change for
improvement of their performance.
Therefore, the descriptions given in this service manual may not coincide with the actual machine.
When any change has been made to the descriptions in the service manual, a revised version will be
issued with a revision mark added as required.
Revision mark:
• To indicate clearly a section revised, show 1 to the left of the revised section.
A number within 1 represents the number of times the revision has been made.
• To indicate clearly a section revised, show 1 in the lower outside section of the correspond-
ing page.
A number within 1 represents the number of times the revision has been made.
NOTE
Revision marks shown in a page are restricted only to the latest ones with the old ones deleted.
• When a page revised in Ver. 2.0 has been changed in Ver. 3.0:
The revision marks for Ver. 3.0 only are shown with those for Ver. 2.0 deleted.
• When a page revised in Ver. 2.0 has not been changed in Ver. 3.0:
The revision marks for Ver. 2.0 are left as they are.
CONTENTS
Security Function
5. Checking the firmware version number ................................................................... 3
5.1 Security authentication firmware version number ................................................. 3
6. Accessing the Service Mode ................................................................................... 3
6.1 Access method to the Service Mode .................................................................... 3
7. Enhancing the security function .............................................................................. 5
7.1 Security enhancing procedure .............................................................................. 5
7.1.1 Making and checking the service settings..................................................... 5
7.1.2 Requests to the administrator ....................................................................... 5
7.1.3 Functions whose settings are changed by Enhanced Security Mode ........... 6
8. Service Mode functions ........................................................................................... 7
8.1 Firmware Version .................................................................................................. 7
8.1.1 Checking the firmware version number......................................................... 7
8.2 Administrator Password function........................................................................... 8
8.2.1 Setting the administrator password ............................................................... 8
8.3 CE Password function......................................................................................... 10
8.3.1 Setting the CE password............................................................................. 10
9. Data erase function ............................................................................................... 12
9.1 Data erase procedure ......................................................................................... 12
9.2 Items to be cleared by data erase function ......................................................... 12
10. Firmware rewriting................................................................................................. 13
10.1 Checking the current firmware version ............................................................... 13
10.2 Firmware upgrading procedure by USB memory device .................................... 13
10.2.1 Preparations for firmware upgrading ........................................................... 13
11. Setup procedure for PKI card system.................................................................... 16
12. Loadable driver downloading................................................................................. 16
12.1 Outline ................................................................................................................ 16
12.2 Downloading procedure ...................................................................................... 16
12.2.1 Preparations for loadable driver downloading ............................................. 16
12.2.2 How to download loadable driver data ........................................................ 16
12.3 Checking the loadable driver .............................................................................. 18
i
Security Function Ver. 1.03 Apr. 2015
ii
Security Function Ver. 1.03 Apr. 2015 1. Overview
1. Overview
Security Function
3. Data to be protected
The underlying concept of this machine toward security is “to protect data that can be dis-
closed against the intention of users.”
The following types of image files that have been stored in the machine and made available
for use by its users are protected while the machine is being used.
• Encrypted document transmitted to the machine using a dedicated printer driver and an
IC card from the client PC and saved in the machine
• Image files which have been scanned for transmission to a user mail address through
email (S/MIME)
The following types of data saved in the HDD are protected when use of a leased machine
is terminated at the end of the leasing contract, the machine is to be discarded, or when the
HDD is stolen.
• Encrypted document
• Scanned image files
• Image files other than encrypted document
1
4. Precautions for operation control Security Function Ver. 1.03 Apr. 2015
The machine supports the following types of IC card and IC card reader.
• The types of IC cards supported by the machine are the Common Access Card (CAC)
and Personal Identity Verification (PIV).
• The type of IC card reader supported by the machine is AU-211P/Identive SCR-3310/
SCR-3310v2.
The service engineer should take the following precautions when the user is to purchase an
additional option.
• For an option that requires that Enhanced Security Mode be turned [OFF] before the
option can be used on the machine, notify the user that the mounting of the option makes
the machine not guaranteed by the ISO15408 certification.
When the Enhanced Security Mode is set to [OFF], make various settings according to the
installation checklist and then have the administrator set the Enhanced Security Mode to
[ON] again.
E. Miscellaneous
The service engineer should explain to the administrator of the machine that the lan-
guages, in which the contents of the User’s Guide [Security Operations] have been evalu-
ated, are Japanese and English. He or she should also explain the way how to get the
manual in the language, in which it is evaluated.
2
Security Function Ver. 1.03 Apr. 2015 5. Checking the firmware version number
Security Function
Firmware type Version
Controller firmware A6F730G0273999P
Refer to P.7 for the method of checking the firmware version.
A6F7S1E001DA
NOTE
• The CE password entered is displayed as “✱.”
• NEVER forget the CE password. When forgetting the CE password, contact Konica
Minolta.
If the CE password is forgotten, replacement of the MFP board will initialize the
setting values and turn “OFF” the Enhanced Security mode. Be sure to have the
administrator set the Enhanced Security mode back to “ON” again.
3
6. Accessing the Service Mode Security Function Ver. 1.03 Apr. 2015
• Each time a wrong CE password is entered, the CE password illegal access count
for PKI card system
bizhub 4750/4050
is incremented by one.
When the access to the Service Mode has been successful with the correct CE
password entered, the CE password illegal access count is cleared and reset to 0.
• When “ON” is set for Enhanced Security Mode, access to the Service Mode
through the CE Password is restricted by up to 3 times.
If the CE password illegal access count exceeds 3 times, the machine is then set
into an access lock state.
It is necessary for unlocking the access lock state to restart the machine with main
power switch OFF and ON.
Security Function
A6F7S1E002DA
NOTE
• If you leave the site with the Service Mode setting screen being displayed, unau-
thorized changes could occur for any set values. When you finish the setting of
Service Mode, or if you have to leave the site by necessity when the Service Mode
has been set, be sure to press [Close] and log-out from the Service Mode.
4
Security Function Ver. 1.03 Apr. 2015 7. Enhancing the security function
Security Function
• Resetting the CE password to meet the requirements of the password rules before exe-
cuting the security enhancing procedure.
See P.10
7.1.2 Requests to the administrator
• When making the Enhance Security setting, the Administrator settings must be made.
The administrator must perform or check the following settings.
5
7. Enhancing the security function Security Function Ver. 1.03 Apr. 2015
• Setting the Enhanced Security Mode to [ON] changes the setting values of the following
functions.
6
Security Function Ver. 1.03 Apr. 2015 8. Service Mode functions
Security Function
8.1.1 Checking the firmware version number
1. Call the Service Mode to the screen.
See P.3
2. Touch [Firmware Version].
3. Check the Firmware version number of [Controller F/W] using firmware version num-
ber.
A6F7S1E016DB
NOTE
• Check that the version of [Boot F/W] is “A6F799G0100-999”.
• If the version of [Boot F/W] does not match, the service engineer will stop this set-
ting and contact Konica Minolta.
4. Touch [Close].
7
8. Service Mode functions Security Function Ver. 1.03 Apr. 2015
• This function is used when the administrator sets the administrator password. It also
allows a new administrator password to be set without requiring the entry of the currently
set administrator password. It is therefore used when the administrator forgets the
administrator password.
NOTE
• If the administrator password is temporarily changed by the service engineer,
never fail to have the administrator change the administrator password accord-
ingly.
Security Function
A6F7S1E004DA
5. Touch the input area of [Password] and enter the new password from the keyboard on
the screen. Then, touch [OK].
NOTE
• When [Password Rules] is set to [OFF], an eight-digit password should be set, and
when [Password Rules] is set to [ON], a password with more digits (default: 12 digits)
than that set at [Set Minimum Password Length] and less than 16 digits should be set.
A6F7S1E005DA
8
Security Function Ver. 1.03 Apr. 2015 8. Service Mode functions
6. Touch the input area of [Password Confirmation] and enter the new administrator pass-
Security Function
9
8. Service Mode functions Security Function Ver. 1.03 Apr. 2015
• The CE Password function is used to change the CE password to call the Service Mode
to the screen.
Stop → 2 → 2 → 2 → 0 → 0
4. Touch [CE Password].
A6F7S1E004DA
5. Touch the input area of [Current Password] and enter the CE password set currently
from the keyboard on the screen.
A6F7S1E006DA
10
Security Function Ver. 1.03 Apr. 2015 8. Service Mode functions
6. Touch the input area of [Password] and enter the CE password to be newly used from
NOTE
• The CE password should include more digits than that set at [Set Minimum Pass-
word Length] and less than 16 digits (default: 12 digits).
• The machine does not accept any new password that contains only the same char-
acter, consists of less than 12 digits, or that is the same as the previous password.
• For the CE Password, set a value other than the default.
Security Function
A6F7S1E007DA
7. Touch the input area of [Password Confirmation] and enter the CE password to be
newly used from the keyboard on the screen.
NOTE
• In the CE password change display, enter the same CE password to the entry
areas (upper and lower).
• NEVER forget the CE password. When forgetting the CE password, contact Konica
Minolta.
If the CE password is forgotten, replacement of the MFP board will initialize the
setting values and turn “OFF” the Enhanced Security mode. Be sure to have the
administrator set the Enhanced Security mode back to “ON” again.
• If there is a mismatch in the CE Password between that typed first and that just
typed, the machine displays a message telling that the CE Password entered is
wrong. In this case, set the CE Password once again.
11
9. Data erase function Security Function Ver. 1.03 Apr. 2015
• The data erase function (Overwrite All Data/Restore All) overwrites and deletes all data
saved in all areas of the HDD, and resets all passwords stored in the memory area on the
MFP board to the default settings. It can be used when the machine is to be discarded or
use of a leased machine is terminated at the end of the leasing contract, thereby prop-
erly blocking leaks of data.
12
Security Function Ver. 1.03 Apr. 2015 10. Firmware rewriting
Security Function
A6F7S1E016DB
NOTE
• Be sure to save the firmware data in “drive:/firmware/***.prn.”
• This machine can display up to 20 files of firmware data during upgrading.
13
10. Firmware rewriting Security Function Ver. 1.03 Apr. 2015
A6F7S1E008DA
A6F7S1E009DA
NOTE
• Before upgrading firmware, use [Check Settings] to check that the firmware data is
correct.
A6F7S1E010DA
14
Security Function Ver. 1.03 Apr. 2015 10. Firmware rewriting
7. Touch [Close].
Security Function
A6F7S1E011DA
NOTE
• NEVER disconnect the USB memory device from this machine during the firmware
upgrading procedure.
11. This machine is automatically restarted as soon as the firmware is upgraded correctly.
NOTE
• At the time of firmware rewriting, check that there is no trouble code displayed.
• At the time of firmware rewriting, contact Konica Minolta when any trouble
occurred.
15
11. Setup procedure for PKI card system Security Function Ver. 1.03 Apr. 2015
• After rewriting the firmware to the PKI card system, it is necessary to perform some set-
ting to operate the PKI system.
For details of the setting procedure, see “PKI card system setup instructions” and per-
form appropriate settings.
C. Saving the loadable driver data into the USB memory device
1. Save the loadable driver data in appropriate space in the PC.
2. Connect the USB memory device to the PC.
3. Create a “firmware” folder immediately under the drive of the USB memory device.
4. Copy the loadable driver (***.tar) in the firmware folder created in step 3.
NOTE
• Be sure to save the firmware data in “drive:/firmware/***.tar.”
A6F7S1E008DA
16
Security Function Ver. 1.03 Apr. 2015 12. Loadable driver downloading
6. The loadable driver data list in the USB memory device will be displayed.
A6F7S1E013DA
10. A message will appear on the screen to prompt you to restart this machine, so turn off
the main power switch.
11. Remove the USB memory device from this machine.
12. Turn the main power switch ON.
NOTE
• After downloading the loadable driver, check that there is no trouble code dis-
played.
17
12. Loadable driver downloading Security Function Ver. 1.03 Apr. 2015
A6F7S1E008DA
A6F7S1E017DA
6. Touch [Close].
18
Security Function Ver. 1.03 Apr. 2015 12. Loadable driver downloading
Security Function
A6F7S1E008DA
5. Touch [Delete].
A6F7S1E014DA
A6F7S1E015DA
19
© 2015 KONICA MINOLTA, INC.