Using Security Features | HP 625n Gigabit Ethernet Print Server

Using Security Features

Access to HP Jetdirect configuration parameters can be controlled through combined use of the available security features. Table 7.2 provides examples of various settings and the associated level of access control.

	Table 7.2		Settings for Access Control (1 of 2)

	Settings			Level of Access Control

	●	Accessible through HTTP		Low
		(embedded Web server),		Best suited for trusted environments.
		SNMP v1/v2c applications, or		Any system can access the HP Jetdirect
		Telnet		Any system can access the HP Jetdirect
		Telnet		configuration parameters through the embedded
				configuration parameters through the embedded
	●	Administrator password		Web server, Telnet, or SNMP management
		not set		software. Passwords are not required.
	●	Default SNMP v1/v2c
		community names used
	●	No authentication or
		encryption
	● Access control list empty

	●	Administrator password set		Medium
	●	User-specified SNMP v1/v2		Limited security for non-trusted environment.
		Set Community Name set		If the Administrator password and SNMP v1/v2c
	● The Access Control List			Set Community Name are known, access is
	● The Access Control List			limited to:
		contains host entries and		limited to:
		contains host entries and		● systems listed in the Access Control List, and
		checks HTTP connections		● systems listed in the Access Control List, and
	● Telnet and other non-secure			● SNMP v1/v2c management applications
		protocols disabled.

ENWW	Security Features 183

Image 183

HP 625n Gigabit Ethernet Print Server manual Using Security Features, Settings for Access Control 1, Low, Medium

Contents

HP Jetdirect Administrator’s Guide HP Jetdirect Print Servers Trademark Credits Table of Contents HP Jetdirect Configuration Configuring for LPD PrintingSecurity Features Troubleshooting the HP Jetdirect Print Server OpenSSL Statements Index HP Jetdirect EIO Control Panel Menu Introducing the HP Jetdirect Print Server Introduction Supported Print Servers Supported Network ProtocolsSupported Products Microsoft Windows NT J7942A en3700 J7934A 620n Supported Network ProtocolsTCP/IP DLC/LLC Snmp IP and IPX AuthenticationEAP/802.1X Server-Based Authentication Security Protocols Wireless Print Server Authentication HP Support Firmware UpgradesFirmware Installation Tools Supplied Manuals Introducing the HP Jetdirect Print Server Product Accessibility Product RegistrationHP Support By Phone HP Software Solutions Summary Introduction TCP/IP, IPX/SPX Software SolutionsOperating Environment Function Remarks HP-UX Ndps Software Solutions 3 HP Software Solutions Summary Unix HP Jetdirect Printer Installer for System Requirements HP Web Jetadmin Verifying Installation and Providing Access Installing HP Web Jetadmin Removing HP Web Jetadmin Software Configuring and Modifying a Device HP-Supplied Software Internet Printer Connection Software Windows 2000/XP/Server 2003 Integrated Software Microsoft Supplied SoftwareHP Software System Requirements HP Software Supported Proxies Novell Supplied Software Windows Me IPP ClientAddress 192.160.45.40. /ipp/port1 is HP IP/IPX Printer Gateway for Ndps Features To Get the Software Configure Mac OS HP LaserJet Utilities for Mac OS Installing the Printer Software Running the HP LaserJet Utility Configuring the Printer Renaming the Printer Verifying Network Configuration Selecting a Zone Selecting Your Printer If your printer is the only name listedDialog box, you must still select it. Your printer Set Background Printing to on or OFF Testing the Configuration Server-Based and Manual TCP/IP Configuration TCP/IP Configuration Introduction Default IP Address Default IP Address Will Not Be AssignedDefault IP Address Will Be Assigned Default IP Parameter Default IP Address Configuration Options Dhcp Requests Enable/Disable Default IP on Wireless and Wired Print Servers TCP/IP Configuration Tools TCP/IP Configuration Using BOOTP/TFTP Why Use BOOTP/TFTP? BOOTP/TFTP on UnixSystems That Use Network Information Service NIS Properly configured Configuring the Bootp ServerHP recommends that the Bootp server be located Bootp broadcast packets may not be Tags Supported in a BOOTP/DHCP Boot file 1 Bootptab File Entries Lease-time Tags Supported in a BOOTP/DHCP Boot file 2Description 2132 Option Tags Supported in a BOOTP/DHCP Boot file 3 T150 Tftp Configuration File EntriesTags Supported in a BOOTP/DHCP Boot file 4 2132 Option T149 TCP/IP Configuration List of Supported Tftp Commands 1 Support List of Supported Tftp Commands 2Other Settings AppleTalk Tftp Configuration File Parameters 1 Tftp Configuration File Parameters 2 Tftp Configuration File Parameters 3 Allow netnum mask Tftp Configuration File Parameters 4 Tftp Configuration File Parameters 5 Tftp Configuration File Parameters 6 Tftp Configuration File Parameters 7 Tftp Configuration File Parameters 8 Tftp Configuration File Parameters 9 Tftp Configuration File Parameters 10 Tftp Configuration File Parameters 11 Tftp Configuration File Parameters 12 Using Dhcp Windows Systems Unix Systems Windows NT 4.0 Server TCP/IP Configuration TCP/IP Configuration TCP/IP Configuration NetWare Systems To Discontinue Dhcp Configuration If you choose to re-enable a Dhcp configuration Using Rarp If your system uses Network Information Service Using the arp and ping Commands Once the IP address has been set on the print server Creating a Telnet Connection Using Telnet Route add 192.0.0.192 Route add Jetdirect IP Address system IP Address Typical Telnet Session User Interface Options Command Line Interface Default User Control Commands Telnet Commands and Parameters 1 Command Description Telnet Commands and Parameters 2 Telnet Commands and Parameters 3 Telnet Commands and Parameters 4 Wireless DiagnosticsPoor/Marginal/Good/Excellent Indicates the detected TCP/IP Main Command Description Telnet Commands and Parameters 5 TCP/IP Print Options Command Description Telnet Commands and Parameters 6 TCP/IP LPD Queues Command Description Telnet Commands and Parameters 7 Telnet Commands and Parameters 8 TCP/IP Access Control Command DescriptionTCP/IP Other Command Description Telnet Commands and Parameters 9 Telnet Commands and Parameters 10 Telnet Commands and Parameters 11 TCP/IP Diagnostics Command Description Telnet Commands and Parameters 12 Snmp Traps Command Description Telnet Commands and Parameters 13 AppleTalk Command Description Telnet Commands and Parameters 14 Other Command Description Telnet Commands and Parameters 15 Telnet Commands and Parameters 16 Support Command Description Telnet Commands and Parameters 17 Telnet Commands and Parameters 18 Menu InterfaceOr an intranet Example Using the Menu Interface Using Telnet to Erase the Existing IP Settings Using the Embedded Web Server Using the Printer Control Panel Moving to Another Network Using the Embedded Web Server Introduction For network parameter descriptions, see Networking Tab Browser Exceptions Supported HP Web Jetadmin VersionRequirements Compatible Web Browsers Viewing the Embedded Web Server Entering the IP Address Operating Notes HP Jetdirect Home Page Items 1 HP Jetdirect Home Tab LAA HP Jetdirect Home Page Items 2 Networking Tab Sending Product Information to HPNetworking Menu Items Wireless Ethernet Network Settings Using the Embedded Web Server Configuration Parameters 1 WPA-PSK Configuration Parameters 2 802.11 Configuration Parameters 3 TCP/IP Settings 1 Configuration Parameters 4 TCP/IP Settings 2 TCP/IP Settings 3 BOOTP/DHCPTTL/SLP IPX/SPX Settings 1 IPX/SPX Settings 2 Available zones AppleTalk SettingsAppleTalk Be followed by a number to indicate that it is a duplicate Snmp Snmp Settings 1 Utilities may not operate properly Other SettingsSnmp Settings 2 Snmp v1/v2c is disabled, some port monitors or discovery Miscellaneous Settings 1 Misc. Settings Miscellaneous Settings 2 Miscellaneous Settings 3 Miscellaneous Settings 4 Miscellaneous Settings 5 Then click Upgrade Firmware LPD Queues Firmware Upgrade LPD Queue Parameters 1 LPD Queue Parameters 2 Value LPD Queue Parameters 3 Using the Embedded Web Server USB Item Description USB Settings10 USB Settings On the Jetdirect configuration Support Info Privacy SettingsSettings Select Language Restore Defaults StatusWizard Security Level Description 11 Wizard Security Levels 1 11 Wizard Security Levels 2 Admin. Account Authorization Certificates Configuring Certificates 12 Certificate Configuration Screens 1 Certificate OptionsChoose from the options listed Certificate Validity 12 Certificate Configuration Screens 2 Common Name. Required 12 Certificate Configuration Screens 3Install Certificate, or Install CA Certificate Certificate Information 12 Certificate Configuration Screens 4 Import Certificate and Private KeyExport the Jetdirect certificate and private key Access Control Mgmt. Protocols Web MgmtIP Address Mask Description Snmp Using the Embedded Web Server Other 13 Other Protocols 1Multicast IPv4 13 Other Protocols 2 802.1x Authentication 14 802.1X Configuration Settings 1 Network Statistics WirelessConfiguration 14 802.1X Configuration Settings 2 Support HP Web JetadminOther Links Help LPD on Unix Systems Configuring for LPD Printing Introduction About LPD LPD Programs and ProtocolsProgram Name Purpose of Program LPD Setup Overview Requirements for Configuring LPDSetting Up IP Parameters Setting Up Print Queues Printing a Test FileSupported Queue Names Configuring Print Queues for BSD-based Systems LPD on Unix SystemsExample Printcap Entries for Ascii or Text Printers Configuring for LPD Printing Configuring Print Queues Using SAM HP-UX systems For HP-UX systems, substitute lp -dfor lpr -P LPD on Windows NT/2000/Server 2003 Systems Installing TCP/IP Software Configuring for LPD Printing Add LPR compatible printer window Select and enable Other Network File and Print Services Configuring for LPD Printing Click Add Port Configuring a Network Printer for Windows NT 4.0 Systems Adding Windows Optional Networking Components Verifying the ConfigurationLPD on Windows XP Systems Printing from Windows Clients Adding a New LPD Printer Configuring a Network LPD Printer LPD on Mac OS Systems Assigning an IP Address Setting Up Mac OS Configuring for LPD Printing FTP Printing Introduction Using FTP Printing Print FilesFTP Connections Data Connection Control Connection FTP Login Example FTP Login Commands User Commands for HP Jetdirect FTP Server 1Ending the FTP Session User Commands for HP Jetdirect FTP Server 2 This is an example of a typical FTP printing session Example of an FTP Session Security Features Introduction Network Protocol Control Summary of HP Jetdirect Security Features 1IP Administrator Password Secure Embedded Web Server Management Telnet Control Summary of HP Jetdirect Security Features 2IP Access Control List Authentication and Encryption Printer Control Panel Lock Summary of HP Jetdirect Security Features 3HP Web Jetadmin Password and Profiles Snmp Low Using Security FeaturesSettings for Access Control 1 Settings Level of Access Control High Settings for Access Control 2 Troubleshooting the HP Jetdirect Print Server Introduction HP LaserJet Printer with Internal EIO Print Server Resetting to Factory Defaults HP Jetdirect External Print Servers Troubleshooting Chart Assessing the Problem General Troubleshooting Procedure 1 Verifying that the Printer is On and Online Procedure 2 Printing an HP Jetdirect Configuration Procedure 3 Resolving Printer Display Error Messages Troubleshooting the HP Jetdirect Print Server Connector has indicator lights to Troubleshooting the HP Jetdirect Print Server Telnet IP address port Unable to Communicate During Initial Setup Troubleshooting Wireless Print Servers My Configured Channel Does Not Match the Configuration Unable to Communicate After Initial Setup Symptoms Improving Reception and PerformanceCorrective Actions Firmware Download Failure Troubleshooting an LPD Unix Configuration HP-UXenable qname Status Field Error Messages HP Jetdirect Configuration Introduction Typical Jetdirect Configuration Configuration Page Format IPX/SPX Section Name Description Message Description Configuration Page MessagesHP Jetdirect Configuration/General Information HP Jetdirect Configuration 1 HP Jetdirect Configuration 2 USB Printer Settings USB SettingsUSB Speed Ssid Wireless SettingsWireless Settings 1 Status/Error Messages 802.11 Wireless Settings 2 Wireless Settings 3 Security Settings Security Settings 1SSL/TLS Control functions Snmp SetRequests on the HP Jetdirect Security Settings 2Configured on the HP Jetdirect print server. An Snmp set Community name is a password for write access to Snmp Security Settings 3 Network Statistics IP Address TCP/IP Configuration Information 1TCP/IP Protocol Information Host Name TCP/IP Configuration Information 2 TCP/IP Configuration Information 3 WEB Jetadmin URL TCP/IP Configuration Information 4 Type IPX/SPX Configuration Information 1IPX/SPX Protocol Information Primary Frame IPX/SPX Configuration Information 2 Novell NetWare Parameters Novell NetWare Configuration Information 1 Interval Novell NetWare Configuration Information 2Attached Server Queue Poll AppleTalk Protocol Information AppleTalk Configuration Information Indicates the current DLC/LLC protocol status 10 DLC/LLC Configuration InformationDisabled Indicates that DLC/LLC was manually disabled DLC/LLC Protocol Information Error Messages 11 Error Messages 1Error Code Description Message 11 Error Messages 2 11 Error Messages 3 11 Error Messages 4 11 Error Messages 5 11 Error Messages 6 11 Error Messages 7 11 Error Messages 8 11 Error Messages 9 11 Error Messages 10 11 Error Messages 11 Internet Protocol IP TCP/IP Overview Introduction IP Address Transmission Control Protocol TCPUser Datagram Protocol UDP IP Address Host Portion IP Address Network Portion Class First Address Second Third Address Fourth Byte Table A.2 Network Class CharacteristicsIP Address Structure and Class Table A.1 IP Address Class Format Dynamic Host Configuration Protocol Dhcp Configuring IP Parameters Subnet Mask Subnets Default Gateway GatewaysSyslog Server Is not restricted Messages are disabledTable A.4 HP Jetdirect Syslog Parameters Syslog Server TCP/IP Overview HP Jetdirect EIO Control Panel Menu Introduction Classic Control Panel Table B.1 HP Jetdirect Classic Control Panel Menu 1Menu Item Description Table B.1 HP Jetdirect Classic Control Panel Menu 2 CFG TCP/IP=CFG IPX/SPX= SECURITY= Table B.1 HP Jetdirect Classic Control Panel Menu 3CFG LINK= WEB= Graphical Control Panel Menu Item Options Description of settingsTCP/IP Enable Config Method Dhcp Renew Manual SettingsTable B.2 HP Jetdirect Graphical Control Panel Menu 2 Dhcp Release Table B.2 HP Jetdirect Graphical Control Panel Menu 3 Table B.2 HP Jetdirect Graphical Control Panel Menu 4 OpenSSL License OpenSSL Statements Original SSLeay License ARP Duplicate IP Address Index Index ERR Negotiating Buffer Size Https NDS Authentication Error Connection State Error Novram Error Tftp Snmp Unable to Attach to Queue 229 Connect Dhcp Server Xmit Collisions 214 Xmit Late Collisions Hewlett-Packard Development Company, L.P English