Default Password and the 2020 California Password Law (SB-327)

The default password as we know it is becoming a thing of the past.  Starting on January 1, 2020 a law in California will change the way passwords are handled.  The new California state law (SB-327) states that manufacturers of any device connected to the internet (IoT-device)  that want to sell their products in California have to equip the devices with “reasonable security feature(s)”.  Manufacturers failing to do so will face enforcement from the California Attorney General and local officials. 

So how does this relate to you? Even if you are not in California you may be impacted by this law.  Manufacturers cannot make this fundamental change to just the products going to California, so the change will be seen everywhere.  What this means is that there will no longer be a universal default password as there is now. The 1111 default does not meet the regulations, so going forward the default password for the printers will be the serial number of the machine.   You should change your system administrator password. Xerox has always recommended that you change the default system administrator password after you configure your printer. Be sure to store this new password in a secure location. 

If you currently have a printer, the default will remain the same until or unless the software/firmware is updated.  Once an update takes place for whatever reason, including service calls and firmware/software upgrades, the new rules will apply and the new default password for your machine will then be the serial number of the printer. Once you change the password, if the new password is lost or forgotten a service technician visit will be required to reset the password.  There is not a way to reset the password remotely.     

Below is a video on changing the system administrator password, the steps are similar on most of the printers and multifunction printers.

Instructions for changing the password are found in the online knowledgebase for your printer at If your machine gets defaulted to the serial number as the password you should then change it to something else that will be more secure and unique and that you can remember.

The main take away here is that depending on when the device was manufactured or the software/firmware version installed or upgraded, the default administrator password may be the device serial number instead of the original 1111.  Now you know!

Related Posts

Receive Updates

Post A Comment

Your email address will not be published. Required fields are marked *

To see how we protect your personal data, view our Privacy Policy.