White Papers
Table Of Contents
- Contents
- Change history
- Overview
- Securing network connections
- Managing devices remotely
- Managing login methods
- Restricting public access to functions, applications, printer management, and security options
- Using local accounts
- Using LDAP or LDAP+GSSAPI
- Using Kerberos
- Using Active Directory
- Creating LDAP, LDAP+GSSAPI, or Active Directory groups
- Editing or deleting LDAP, LDAP+GSSAPI, or Active Directory groups
- Understanding access controls
- Managing certificates
- Managing other access functions
- Securing data
- Troubleshooting
- User is locked out
- User is logged out automatically
- User cannot access applications or functions
- KDC and MFP clocks are out of sync
- Domain controller certificate is not installed
- KDC is not responding within the required time
- LDAP lookups fail
- Make sure that the server and firewall settings are configured to allow communication between the pr ...
- If reverse DNS lookup is not used in your network, then disable it in the Kerberos settings
- If the LDAP server requires SSL, then enable SSL for LDAP lookups
- Narrow the LDAP search base to the lowest possible scope that includes all necessary users
- Make sure that all LDAP attributes that are being searched for are correct
- Notices
- Index
Securing network connections
Accessing the Embedded Web Server
1 Obtain the printer IP address. Do either of the following:
• Locate the IP address on the top of the printer home screen.
• From the printer home screen, touch Settings > Network/Ports > Network Overview.
2 Open a Web browser, and then type the printer IP address.
Configuring TCP/IP port access settings
You can control your network device activities by configuring your device to filter out trac on specific network
connections. Protocols (such as FTP, HTTP, and Telnet) can be disabled.
Port filtering on devices disables network connections individually. When a port is closed, a device does not
respond to trac on the specified port whether the corresponding network application is enabled.
We recommend closing any ports that you do not plan to use under standard operation by clearing them.
1 From the Embedded Web Server, click Settings > Network/Ports > TCP/IP > TCP/IP Port Access.
2 Enable the access to the TCP/IP ports.
3 Click Save.
Note: For more information on each port, contact your system administrator.
Configuring IP Security (IPsec) settings
Apply IPsec between the printer and the workstation or server to secure
trac
between the systems with a
strong encryption. The printers support IPsec with preshared keys (PSK) and
certificates.
You can use both
options simultaneously.
When using PSK authentication, printers are configured to establish a secure IPsec connection with up to seven
other systems. Printers and the systems are configured with a pass phrase that is used to authenticate the
systems and to encrypt the data.
When using the CA certificate authentication, printers are configured to establish a secure IPsec connection
with up to
five
systems or subnets. Printers exchange data securely with many systems, and the process is
integrated with a PKI or CA infrastructure. Certificates provide a robust and scalable solution, without configuring
or managing keys and pass phrases.
1 From the Embedded Web Server, click Settings > Network/Ports > IPSec.
2 Select Enable IPSec.
3 Configure the following settings to specify the encryption and authentication methods of the printer:
• Base Configuration
• DH (Die‑Hellman) Group Proposal
• Proposed Encryption method
Securing network connections 6