Manuals / HP / Computer Equipment / All in One Printer

HP ew2500 802.11b/g Print Server Limit access to security features, 2Settings for Access Control

Models: ew2500 802.11b/g Print Server

1 206

Download 206 pages 49.02 Kb

Page 133

Table 6-1Summary of HP Jetdirect security features (continued)

Printer Control Panel Lock

●Selected HP printers provide a control panel lock that prevents access to HP Jetdirect print server configuration parameters. In many cases, management applications (such as HP Web Jetadmin) can remotely set the lock. To determine whether your printer supports a control panel lock, see your printer documentation.

Configuration Precedence Table

●To control the configuration of various TCP/IP parameters using the different tools supported by the print server, a Configuration Methods precedence table is provided. Access the precedence table using the HP Embedded Web Server. By default, manual configuration methods have precedence over other methods (such as DHCP or TFTP). By changing the precedence order, the control of configuration parameters can be enhanced.

Limit access to security features

You can control access to HP Jetdirect configuration parameters using the available security features. Examples of various settings and associated levels of access control are provided in Table 6-2 Settings for Access Control on page 123.

Table 6-2Settings for Access Control

Settings

Level of Access Control

●Accessible using HTTP (HP Embedded Web Server), SNMP v1/v2c applications, or Telnet

●Administrator password not set

●Default SNMP v1/v2c community names

●No authentication or encryption

●Access control list empty or Firewall disabled.

Low

Best suited for trusted environments.

Any system can access the HP Jetdirect configuration parameters through the HP Embedded Web Server, Telnet, or SNMP management software. Passwords are not required.

Limit access to security features

123

Image 133

HP ew2500 802.11b/g Print Server manual Limit access to security features, 2Settings for Access Control

Contents

HP Jetdirect Print Servers Page HP Jetdirect Print Servers Trademark Credits Copyright Hewlett-Packard Development Company, L.PTable of contents HP Embedded Web Server DLC/LLC Snmp IPsec/Firewall configuration 105HP Jetdirect configuration pages 135 Security features 121Troubleshoot the HP Jetdirect print server 125 Appendix B FTP printing 173 Appendix a LPD printing 163Appendix D Open source licensing statements 188 Appendix C HP Jetdirect control panel menus 177Index 191 Supported print servers Introducing the HP Jetdirect print server2Supported network protocols Supported network protocolsEAP/802.1X port-based authentication AuthenticationSecurity protocols Snmp IP and IPXIPsec/Firewall Wireless print server authenticationFirmware installation tools Firmware upgradesSupplied manuals HP supportProduct registration Product accessibilityHP support by phone 1Software Solutions HP software solutions summaryHP Web Jetadmin see HP Web Jetadmin on Operating Environment Function RemarksOperating Environment Function HP Web Jetadmin HP Jetdirect Printer Installer for UnixSystem requirements Install HP Web Jetadmin software Remove HP Web Jetadmin software Configure and modify a deviceVerify HP Web Jetadmin installation and provide access Internet Printer Connection softwareNovell-supplied software Mac OS network installationSoftware tools Windows XP/Server 2003 or 2008 integrated softwareOpen System Preferences, and then open Print & Fax Use Bonjour Mac OS XTest the configuration Verify network configurationIPv6 configuration TCP/IP configurationIPv6 address introduction Link-local address IPv6 address configurationStateless addresses Use DNS Stateful addressesServer-based and manual TCP/IP configuration IPv4 IPv4 configurationTools and utilities Default IP address is not assigned Default IP address IPv4Default IP address is assigned Default IPv4 address configuration options Default IP on wireless and wired print serversDefault IPv4 parameter Dhcp requests enable/disableTCP/IP configuration tools Default IPv4 behaviorAdvantages of using BOOTP/TFTP Use BOOTP/TFTP IPv4Configure the print server using BOOTP/TFTP on Unix Configure the Bootp server Systems using network information service NISBootptab file entries IPv4 RFC Description Option 1Tags supported in a BOOTP/DHCP boot fileTftp configuration file entries IPv4 Example HP Jetdirect Tftp configuration file 2TFTP configuration file parametersGeneral TCP/IP Main TCP/IP Print Options Ftp-printing or ftp-config,ftp Printing or 9100-configIpp-printing or ipp-config,ipp Lpd-printing or lpd-config,lpdTCP/IP Other Settings TCP/IP Access ControlTCP/IP Raw Print Ports Bonjour-config Slp-configSyslog-facility Slp-keep-aliveUser-timeout or telnet-timeout Idle-timeoutCold-reset Icmp-ts-configDefault-ip Telnet-config or telnetDefault-ip-dhcp Snmp-configIpx-config or ipx/spx Auth-trap or authentication-trapGet-cmnty-name or get-community-name Set-cmnty-name or set-community-nameAppleTalk Other SettingsUpgrade Tftp server IP Version Product Number Filename UpgradeUsb-mode Usb-speedUnix systems Use Dhcp IPv4Support Windows Server 2003 and Server Windows systemsDiscontinue Dhcp configuration Laserjet1 Use Rarp IPv4Arp -s IP address LAN hardware address Ping IP address Use the arp and ping commands IPv4Create a Telnet connection Use Telnet IPv4Route add Jetdirect IP Address system IP Address Typical Telnet session3Telnet Commands and Parameters Telnet command line interface defaultCommandDescription User Control Commands Telnet user interface optionsWireless 802.11 Main Server-auth Auth-typeSvr-auth-user Svr-auth-passWireless Diagnostics 00a0f8387af7 Ipsec-config Firewall-configHost-name SpecifiedTftp Filename Tftp ServerHpnp/printer1.cfg Domain-name support.hp.comFtp-printing PrintingIpp-printing Lpd-printingTCP/IP Other TCP/IP LPD QueuesSyslog-svr To 1440 EnableFtp-download Bonjour Domain NameEws-config User-timeoutGw-disable For more information, see HP Embedded Web Server V.40.xx onTCP/IP Diagnostics Snmp Traps Ipx-unitname Ipx-configAddress Ipx-modeOther Xml-services-conf Upgrade LaaWs-discovery-conf 1000t-ms-confNetwork-select Web JetAdmin URL Job-timeoutWeb JetAdmin Name Menu InterfaceUse Telnet to remove an IP address 1Example Using the Menu InterfaceUse the printer control panel Use the HP Embedded Web ServerMove to another network IPv4 Page HP Embedded Web Server Requirements Supported HP Web Jetadmin versionView the HP Embedded Web Server Compatible Web browsersPage Operating notes HP Jetdirect Home tab1HP Jetdirect Home Page Items Device tabs Networking tabConfiguration section WirelessDiagnostics section 2Networking Menu Items3Wireless configuration parameters WEP Personal WEP Enterprise WPA Personal Restore DefaultsWPA Enterprise Summary tab TCP/IP Settings4TCP/IP Summary tab 5TCP/IP Network Identification tab Network Identification tab6TCP/IPv4 tab TCP/IPv4 tab7TCP/IPv6 tab TCP/IPv6 tab8TCP/IP Config Precedence tab Config Precedence tab9TCP/IP Advanced tab Advanced tabProxy Server Password Manual SettingsDisable Default IPNetwork Settings 10IPX/SPX tab settings AppleTalk 11AppleTalk tab settings12SNMP tab settings Misc. Settings Other Settings13Miscellaneous Settings Certificate Mgmt Service HP XML ServicesWeb Services Print Link settingsLPD Queues Firmware UpgradeQueue Name 14LPD Queues tab settingsPrepend String Name Append String NameQueue Type Default Queue NameString Name Value15USB Settings tab USB SettingsSupport Info Refresh RateSelect Language Security SettingsStatus WizardSecurity Level Description Basic Security 16Wizard Security LevelsSecurity Level Description Enhanced Security Restore DefaultsRecommended Custom SecurityAdmin. Account AuthorizationPrinter Password Synchronization Certificates17Certificate configuration screens Configure certificatesCertificate Validity Period Install CertificateCertificate Information Import Certificate and Private KeyExamples Install Certificate or Install CA Certificate screensDomain Name myprinter.mydepartment.mycompany.com IP Address Mask Description Access ControlWeb Mgmt Mgmt. ProtocolsSnmp Enable Print Services Enable Print ProtocolsOther 18Other protocolsEnable Device Discovery 802.1X AuthenticationSLP, might be disabled without notification Naming Resolution19802.1X configuration settings Assessment Other Links IPsec/Firewall configuration 1Firewall Policy 1IPsec/Firewall Policy All IPv4 Addresses All Jetdirect Print Services Default Rule exampleIPsec security associations SA HP Jetdirect IPsec/Firewall wizard2Limitations to rules, templates and services Limitations to rules, templates and servicesLimit Create Address Template Specify Address TemplateCreate Service Template Specify Service Template4Create Service Template 3Create Address TemplateManage Custom Services Manage Services5Manage Services 6Manage Custom ServicesSpecify IPsec/Firewall Template Specify ActionCreate IPsec Template Identity Authentication7Create IPsec Template Kerberos 8Identity AuthenticationCertificates Certificates on10Kerberos Settings Kerberos Settings9Kerberos IKEv1/IKEv2 Phase 2 / Quick Mode IPsec Protocols IKEv1/IKEv2 Phase 1 Authentication11IKEv1/IKEv2 Phase 1 Authentication 12IKEv1/IKEv2 Phase 2 / Quick Mode Settings IPsec Protocols Advanced IKE Settings13Advanced IKE Settings Manual Keys IPsec Protocols Manual Keys14IPsec Protocols Manual Keys 15Manual KeysRule Summary Configure Windows systems1Summary of HP Jetdirect security features Security featuresHP Web Jetadmin IPv4 Password and Profiles Authentication and EncryptionTelnet Control IPv4/IPv6 Snmp v1/v2c Set Community Name IP/IPX2Settings for Access Control Limit access to security featuresMedium Settings Level of Access ControlHigh Troubleshoot the HP Jetdirect print server Reset to factory defaultsExample Cold reset using the service menu Disable an HP Jetdirect embedded print serverTroubleshooting chart assess the problem General troubleshootingProcedure 2 Print an HP Jetdirect configuration Procedure 1 Verify the printer is on and onlineProcedure 3 Resolve printer display error messages Procedure 4 Resolve printer network communication problems Telnet IP address port Unable to communicate during initial setup Troubleshooting wireless print serversUnable to communicate after initial setup My configured channel does not match the configuration Improving reception and performance SymptomsFirmware download failure Corrective actionsHP Jetdirect configuration HP Jetdirect configuration pagesStatus field error messages 1Configuration Page Sections Configuration page formatHP Jetdirect Configuration or General Information Section NameHP Jetdirect Configuration/General Information Configuration page messages2HP Jetdirect Configuration/General Information MessageDescriptionMessage Description USB printer information4802.11 Wireless settings Wireless settingsUSB Speed Network Name Ssid Status/Error MessagesAccess Point / Bssid Signal StrengthAuthentication Type SSL IssuerSecurity Settings Secure Web Configuration Access ListSnmp Versions Snmp Set Cmty NameNetwork Statistics TCP/IP configuration informationTCP/IP protocol information IPv4 Section IPv4 sectionConfig by Default GatewayBootp Server Rarp Server BOOTP/DHCP ServerIPv6 section IPX/SPX protocol informationIPv6 Section Novell/NetWare parameters 10 IPX/SPX configuration information12 AppleTalk configuration information 11 Novell/NetWare configuration informationAppleTalk protocol information CN=ljpserver.OU=support.OU=mycity.OU=mycompany13 DLC/LLC configuration information Error messages14Error messages DLC/LLC protocol informationError Code and Message Description Reboot Disconnected Network Reconfig MustConfiguration Error Not ConfiguredUnable to SET Password Unable to LoginDisconnecting SPX TimeoutDirected to the print server 4D CF ERR Access List Novram Error4F Tftp Remote Error 3C NDS ERR Unresolved QueueBAD BOOTP/DHCP Reply Tftp Local ErrorBAD Bootp TAG Size BOOTP/RARP in ProgressHP Jetdirect Security 15General Information 2HP Jetdirect SecurityCurrent IPsec status Local IP addresses IPsec Error LogIPsec Statistics IPsec Rules IKE Stats17IPsec statistics 18IKE StatisticsIPsec Security Associations SA table Available Network Services19IPsec Security Associations SRCAbout LPD LPD printingTable A-1LPD programs and protocols Program Name Purpose of ProgramLPD setup overview Requirements for configuring LPDSet up IP parameters Set up print queuesPrint a test file Configure print queues for BSD-based systemsLPD on Unix systems Table A-2Supported queue typesUse SAM to configure print queues HP-UX systems Examples myprinter or printer1 Print a test fileLPD on Windows Server 2003/2008 systems Install TCP/IP softwareAdd LPR compatible printer window LPD on Windows XP systems Verify the configurationPrint from Windows clients Add Windows optional networking componentsCreate an LPR port for an installed printer Configure a network LPD printerAdd a new LPD printer Page Print files FTP printingUse FTP printing FTP connectionsData connection FTP loginTable B-1User commands for HP Jetdirect FTP server CommandsCommand Description End the FTP sessionPORT1 Example FTP SessionGraphical control panel menus HP Jetdirect control panel menusHP Jetdirect EIO Menu on Graphical Control Panel Table C-1HP Jetdirect EIO Menu on Graphical Control Panel Primary DNS IPv6 Settings EnableSecondary DNS AddressProxy Server AppleTalk EnableProxy Port Frame TypeEnable Wipe Reset SecurityLogin Security Keep Reset Assessment Disable IPsec or FirewallLAN HW Test Diagnostics Embedded TestsHttp Test Snmp TestExecute TimeoutPing Test Dest TypePing in Progress RTT AverageRefresh Link SpeedHP Jetdirect EIO Menu on Classic Control Panel Classic control panel EIO menusMenu Item Description Menu Item Table C-2HP Jetdirect EIO Menu on Classic Control PanelCFG IPX/SPX WEBFirewall IpsecCode Verification PrintGSOAP Open source licensing statementsOpenSSL OpenSSL licenseOriginal SSLeay license Page Type IndexSee also Gateway Babble Port Select WEP Hewlett-Packard Development Company, L.P