Manuals / HP / Computer Equipment / All in One Printer

HP ew2500 802.11b/g Print Server manual Settings Level of Access Control, Medium, High

Models: ew2500 802.11b/g Print Server

1 206

Download 206 pages 49.02 Kb

Page 134

Table 6-2Settings for Access Control (continued)

Settings		Level of Access Control

●	Administrator password set	Medium
● User-specified SNMP v1/v2 Set Community Name set		Limited security for non-trusted environment.
● Access control list contains host entries and checks HTTP		If the Administrator password and SNMP v1/v2c Set
	connections	Community Name are known, access is limited to:
● Telnet and other non-secure protocols disabled.		● Systems listed in the access control list
		● SNMP v1/v2c management applications

●	Unused protocols disabled	High
● HTTPS access enabled using certificates issued by trusted		High security for non-trusted, professionally managed
	sources	environments.

●Full-featured HP Jetdirect print servers configured for EAP/802.1X port-based authentication and encryption

●Full-featured HP Jetdirect print servers with SNMP v3 enabled, SNMP v1/v2c disabled

●Telnet disabled

●Passwords set

●Access control list contains specified entries and checks HTTP connections

●Printer control panel locked

●IPsec/Firewall policy is enabled and configured

Access is controlled by IPsec. Encryption provides data privacy; network communication in plain text is not used.

CAUTION: Configuration settings from a BootP/TFTP or DHCP/TFTP server can change when the print server is turned off and then on. Verify any settings that might change when the print server is turned off and then on.

124 Chapter 6 Security features (V.40.xx)

Image 134

HP ew2500 802.11b/g Print Server manual Settings Level of Access Control, Medium, High

Contents

HP Jetdirect Print Servers Page HP Jetdirect Print Servers Copyright Hewlett-Packard Development Company, L.P Trademark CreditsTable of contents HP Embedded Web Server IPsec/Firewall configuration 105 DLC/LLC SnmpTroubleshoot the HP Jetdirect print server 125 Security features 121HP Jetdirect configuration pages 135 Appendix a LPD printing 163 Appendix B FTP printing 173Index 191 Appendix C HP Jetdirect control panel menus 177Appendix D Open source licensing statements 188 Introducing the HP Jetdirect print server Supported print serversSupported network protocols 2Supported network protocolsSecurity protocols AuthenticationEAP/802.1X port-based authentication Snmp IP and IPXWireless print server authentication IPsec/FirewallSupplied manuals Firmware upgradesFirmware installation tools HP supportHP support by phone Product accessibilityProduct registration HP Web Jetadmin see HP Web Jetadmin on HP software solutions summary1Software Solutions Operating Environment Function RemarksOperating Environment Function System requirements Install HP Web Jetadmin software HP Jetdirect Printer Installer for UnixHP Web Jetadmin Verify HP Web Jetadmin installation and provide access Configure and modify a deviceRemove HP Web Jetadmin software Internet Printer Connection softwareSoftware tools Mac OS network installationNovell-supplied software Windows XP/Server 2003 or 2008 integrated softwareUse Bonjour Mac OS X Open System Preferences, and then open Print & FaxVerify network configuration Test the configurationIPv6 address introduction TCP/IP configurationIPv6 configuration Stateless addresses IPv6 address configurationLink-local address Stateful addresses Use DNSTools and utilities IPv4 configurationServer-based and manual TCP/IP configuration IPv4 Default IP address is assigned Default IP address IPv4Default IP address is not assigned Default IPv4 parameter Default IP on wireless and wired print serversDefault IPv4 address configuration options Dhcp requests enable/disableDefault IPv4 behavior TCP/IP configuration toolsConfigure the print server using BOOTP/TFTP on Unix Use BOOTP/TFTP IPv4Advantages of using BOOTP/TFTP Bootptab file entries IPv4 Systems using network information service NISConfigure the Bootp server 1Tags supported in a BOOTP/DHCP boot file RFC Description OptionTftp configuration file entries IPv4 General 2TFTP configuration file parametersExample HP Jetdirect Tftp configuration file TCP/IP Main TCP/IP Print Options Ipp-printing or ipp-config,ipp Printing or 9100-configFtp-printing or ftp-config,ftp Lpd-printing or lpd-config,lpdTCP/IP Raw Print Ports TCP/IP Access ControlTCP/IP Other Settings Syslog-facility Slp-configBonjour-config Slp-keep-aliveCold-reset Idle-timeoutUser-timeout or telnet-timeout Icmp-ts-configDefault-ip-dhcp Telnet-config or telnetDefault-ip Snmp-configGet-cmnty-name or get-community-name Auth-trap or authentication-trapIpx-config or ipx/spx Set-cmnty-name or set-community-nameOther Settings AppleTalkUsb-mode UpgradeUpgrade Tftp server IP Version Product Number Filename Usb-speedSupport Use Dhcp IPv4Unix systems Windows systems Windows Server 2003 and ServerDiscontinue Dhcp configuration Use Rarp IPv4 Laserjet1Use the arp and ping commands IPv4 Arp -s IP address LAN hardware address Ping IP addressUse Telnet IPv4 Create a Telnet connectionTypical Telnet session Route add Jetdirect IP Address system IP AddressCommandDescription User Control Commands Telnet command line interface default3Telnet Commands and Parameters Telnet user interface optionsWireless 802.11 Main Svr-auth-user Auth-typeServer-auth Svr-auth-passWireless Diagnostics Host-name Ipsec-config Firewall-config00a0f8387af7 SpecifiedHpnp/printer1.cfg Tftp ServerTftp Filename Domain-name support.hp.comIpp-printing PrintingFtp-printing Lpd-printingTCP/IP LPD Queues TCP/IP OtherTo 1440 Enable Syslog-svrBonjour Domain Name Ftp-downloadGw-disable User-timeoutEws-config For more information, see HP Embedded Web Server V.40.xx onTCP/IP Diagnostics Snmp Traps Address Ipx-configIpx-unitname Ipx-modeOther Ws-discovery-conf Upgrade LaaXml-services-conf 1000t-ms-confNetwork-select Web JetAdmin Name Job-timeoutWeb JetAdmin URL Menu Interface1Example Using the Menu Interface Use Telnet to remove an IP addressMove to another network IPv4 Use the HP Embedded Web ServerUse the printer control panel Page HP Embedded Web Server View the HP Embedded Web Server Supported HP Web Jetadmin versionRequirements Compatible Web browsersPage 1HP Jetdirect Home Page Items HP Jetdirect Home tabOperating notes Networking tab Device tabsDiagnostics section WirelessConfiguration section 2Networking Menu Items3Wireless configuration parameters WEP Personal WEP Enterprise WPA Enterprise Restore DefaultsWPA Personal 4TCP/IP Summary tab TCP/IP SettingsSummary tab Network Identification tab 5TCP/IP Network Identification tabTCP/IPv4 tab 6TCP/IPv4 tabTCP/IPv6 tab 7TCP/IPv6 tabConfig Precedence tab 8TCP/IP Config Precedence tabAdvanced tab 9TCP/IP Advanced tabDisable Manual SettingsProxy Server Password Default IPNetwork Settings 10IPX/SPX tab settings 11AppleTalk tab settings AppleTalk12SNMP tab settings 13Miscellaneous Settings Other SettingsMisc. Settings Web Services Print HP XML ServicesCertificate Mgmt Service Link settingsFirmware Upgrade LPD QueuesPrepend String Name 14LPD Queues tab settingsQueue Name Append String NameString Name Default Queue NameQueue Type ValueSupport Info USB Settings15USB Settings tab Refresh RateStatus Security SettingsSelect Language Wizard16Wizard Security Levels Security Level Description Basic SecurityRecommended Restore DefaultsSecurity Level Description Enhanced Security Custom SecurityPrinter Password Synchronization AuthorizationAdmin. Account CertificatesConfigure certificates 17Certificate configuration screensCertificate Information Install CertificateCertificate Validity Period Import Certificate and Private KeyDomain Name myprinter.mydepartment.mycompany.com Install Certificate or Install CA Certificate screensExamples Access Control IP Address Mask DescriptionSnmp Mgmt. ProtocolsWeb Mgmt Other Enable Print ProtocolsEnable Print Services 18Other protocolsSLP, might be disabled without notification 802.1X AuthenticationEnable Device Discovery Naming Resolution19802.1X configuration settings Assessment Other Links IPsec/Firewall configuration 1Firewall Policy 1IPsec/Firewall Policy IPsec security associations SA Default Rule exampleAll IPv4 Addresses All Jetdirect Print Services HP Jetdirect IPsec/Firewall wizardLimit Limitations to rules, templates and services2Limitations to rules, templates and services Specify Address Template Create Address Template4Create Service Template Specify Service TemplateCreate Service Template 3Create Address Template5Manage Services Manage ServicesManage Custom Services 6Manage Custom ServicesSpecify Action Specify IPsec/Firewall Template7Create IPsec Template Identity AuthenticationCreate IPsec Template Certificates 8Identity AuthenticationKerberos Certificates on9Kerberos Kerberos Settings10Kerberos Settings 11IKEv1/IKEv2 Phase 1 Authentication IKEv1/IKEv2 Phase 1 AuthenticationIKEv1/IKEv2 Phase 2 / Quick Mode IPsec Protocols 13Advanced IKE Settings Advanced IKE Settings12IKEv1/IKEv2 Phase 2 / Quick Mode Settings IPsec Protocols 14IPsec Protocols Manual Keys IPsec Protocols Manual KeysManual Keys 15Manual KeysConfigure Windows systems Rule SummarySecurity features 1Summary of HP Jetdirect security featuresTelnet Control Authentication and EncryptionHP Web Jetadmin IPv4 Password and Profiles IPv4/IPv6 Snmp v1/v2c Set Community Name IP/IPXLimit access to security features 2Settings for Access ControlHigh Settings Level of Access ControlMedium Reset to factory defaults Troubleshoot the HP Jetdirect print serverDisable an HP Jetdirect embedded print server Example Cold reset using the service menuGeneral troubleshooting Troubleshooting chart assess the problemProcedure 1 Verify the printer is on and online Procedure 2 Print an HP Jetdirect configurationProcedure 3 Resolve printer display error messages Procedure 4 Resolve printer network communication problems Telnet IP address port Unable to communicate after initial setup Troubleshooting wireless print serversUnable to communicate during initial setup My configured channel does not match the configuration Firmware download failure SymptomsImproving reception and performance Corrective actionsStatus field error messages HP Jetdirect configuration pagesHP Jetdirect configuration HP Jetdirect Configuration or General Information Configuration page format1Configuration Page Sections Section Name2HP Jetdirect Configuration/General Information Configuration page messagesHP Jetdirect Configuration/General Information MessageDescriptionUSB printer information Message DescriptionUSB Speed Wireless settings4802.11 Wireless settings Status/Error Messages Network Name SsidAuthentication Type Signal StrengthAccess Point / Bssid SSL IssuerSecurity Settings Snmp Versions Access ListSecure Web Configuration Snmp Set Cmty NameTCP/IP protocol information TCP/IP configuration informationNetwork Statistics IPv4 section IPv4 SectionBootp Server Default GatewayConfig by Rarp Server BOOTP/DHCP ServerIPv6 Section IPX/SPX protocol informationIPv6 section 10 IPX/SPX configuration information Novell/NetWare parametersAppleTalk protocol information 11 Novell/NetWare configuration information12 AppleTalk configuration information CN=ljpserver.OU=support.OU=mycity.OU=mycompany14Error messages Error messages13 DLC/LLC configuration information DLC/LLC protocol informationError Code and Message Description Configuration Error Network Reconfig MustReboot Disconnected Not ConfiguredDisconnecting SPX Unable to LoginUnable to SET Password TimeoutDirected to the print server 4F Tftp Remote Error Novram Error4D CF ERR Access List 3C NDS ERR Unresolved QueueBAD Bootp TAG Size Tftp Local ErrorBAD BOOTP/DHCP Reply BOOTP/RARP in ProgressHP Jetdirect Security 2HP Jetdirect Security 15General InformationCurrent IPsec status IPsec Statistics IPsec Error LogLocal IP addresses 17IPsec statistics IKE StatsIPsec Rules 18IKE Statistics19IPsec Security Associations Available Network ServicesIPsec Security Associations SA table SRCTable A-1LPD programs and protocols LPD printingAbout LPD Program Name Purpose of ProgramSet up IP parameters Requirements for configuring LPDLPD setup overview Set up print queuesLPD on Unix systems Configure print queues for BSD-based systemsPrint a test file Table A-2Supported queue typesUse SAM to configure print queues HP-UX systems Print a test file Examples myprinter or printer1Install TCP/IP software LPD on Windows Server 2003/2008 systemsAdd LPR compatible printer window Print from Windows clients Verify the configurationLPD on Windows XP systems Add Windows optional networking componentsAdd a new LPD printer Configure a network LPD printerCreate an LPR port for an installed printer Page Use FTP printing FTP printingPrint files FTP connectionsFTP login Data connectionCommand Description CommandsTable B-1User commands for HP Jetdirect FTP server End the FTP sessionExample FTP Session PORT1HP Jetdirect EIO Menu on Graphical Control Panel HP Jetdirect control panel menusGraphical control panel menus Table C-1HP Jetdirect EIO Menu on Graphical Control Panel Secondary DNS IPv6 Settings EnablePrimary DNS AddressProxy Port AppleTalk EnableProxy Server Frame TypeLogin Security Keep Reset Assessment Disable Reset SecurityEnable Wipe IPsec or FirewallHttp Test Diagnostics Embedded TestsLAN HW Test Snmp TestPing Test TimeoutExecute Dest TypeRefresh RTT AveragePing in Progress Link SpeedMenu Item Description Classic control panel EIO menusHP Jetdirect EIO Menu on Classic Control Panel CFG IPX/SPX Table C-2HP Jetdirect EIO Menu on Classic Control PanelMenu Item WEBCode Verification IpsecFirewall PrintOpenSSL Open source licensing statementsGSOAP OpenSSL licenseOriginal SSLeay license Page Index TypeSee also Gateway Babble Port Select WEP Hewlett-Packard Development Company, L.P