Following are steps to configure this option:

1.Type the password and then repeat it for confirmation.

2.To disable the public Get Community Name, select Disable SNMPv1/v2 default Get Community Name of 'public'. If a device does not support this option, it will ignore it in batch configurations or when applying templates.

Group 1 PIN

This option enables you to force users to use a pin to access a device. You can then use the Authentication Manager function to specify what features (such as walk-up, copy, send, fax) are restricted by this. You can have two different groups, each with a unique pin.

To set this option, type the PIN and then type it again for confirmation.

Group 2 PIN

This option enables you to force users to use a pin to access a device. You can then use the Authentication Manager function to specify what features (such as walk-up, copy, send, fax) are restricted by this. You can have two different groups, each with a unique pin.

To set this option, type the PIN and then type it again for confirmation.

IPsec/Firewall Policy

(Full-featured HP Jetdirect print servers only) The Firewall and Internet Protocol security (IPsec) features provide network-layer security on both IPv4 and IPv6 networks. The Firewall provides simple control of which IP addresses are allowed access. IPsec (RFC 2401) provides the additional security benefits of authentication and encryption.

IPsec configuration is relatively complex. However, because IPsec provides security at the network layer and can be relatively independent of the application layers, the opportunity for secure host-to-host communications over a widespread network, such as the Internet, is greatly enhanced.

If IPsec is supported, you can control IP traffic by using both Firewall and IPsec protection.

If IPsec is not supported, you can control IP traffic by using only Firewall protection.

NOTE: In addition to Firewall and IPsec protection at the network layer, the HP Jetdirect print server also supports the following:

An SNMPv3 agent at the application layer for management application security

Open Secure Sockets Layer (SSL) standards at the transport layer for secure client-server applications, such as client/server authentication or HTTPS Web browsing

For IPsec/Firewall operation on the HP Jetdirect print server, use this option to configure an IPsec/Firewall policy that is applied to specified IP traffic. For more information about configuring IPsec/Firewall policies and the specific settings, see the HP Jetdirect Print Servers Administrator’s Guide.

NOTE: To ensure communications with an HP Jetdirect print server that is configured with an IPsec policy, computer systems that communicate with the print server must be properly configured. IPsec policies that are configured on the print server and computer systems must be compatible. Otherwise, connections fail.

Federal Information Processing Standard (FIPS) supports only the AES-128 and AES-256 ciphers. To configure the Kerberos setting when FIPS mode is enabled on the device, you must specify the AES-128 and AES-256 protocols. If you specify the DES-CBC-MD5 cipher for the Kerberos setting, the configuration fails.

362 Chapter 6 Device Configuration Options

ENWW

Page 390
Image 390
HP Web Jetadmin Software manual Group 1 PIN, Group 2 PIN, IPsec/Firewall Policy