HP SmartStream 3D Command Center 3.2 installation and troubleshooting guide
Technical Newsletter | HP SmartStream 3D Command Center 3.2 installation and troubleshooting guide
4
IT information
• Device Data is accessed through HTTPS from Command Center Server using the Web Services from the devices.
• Data connections to the Cloud are always initiated by Command Center Server. No incoming network ports need to be
opened.
• The PC where Command Center Server is installed always needs to be on and awake to maintain connection with the
HP Cloud.
• Only outgoing HTTPS (TCP 443 port) traffic needs to be allowed on the network firewall, and no incoming network
ports need to be opened.
• Neither the HP SmartStream 3D Command Center nor any devices connected to it need to be reached from the
Internet.
• HP 3D Printing Solution status and health monitoring require frequent uploads of small data payloads (every 5
minutes). Outgoing connections are opened and immediately closed for each payload, which reduces any potential
security risks.
• Command Center Server uses HTTPS web protocol, but it is not a web browser: it cannot be used to access anything
other than the HP Cloud and it is not affected by web browser vulnerabilities.
• Full security audits and vulnerability scans are performed on the Command Center software before release.
• Printers and supporting devices run on dedicated hardware and firmware that is not affected by typical personal
computer vulnerabilities.
• Full security audits and vulnerability scans are performed on all HP device firmware packages before release, and
firmware update files are digitally signed by HP and verified by the HP device before installation.
• Non-anonymous device data is never shared with unauthorized 3rd parties without the customer’s consent. The HP
Cloud stores the device data in HP-authorized data centers which meet strict HP security standards, and the system is
periodically audited to help ensure the highest level of data security.
• The HP SmartStream 3D Command Center software transmits device data to HP Cloud servers using HTTPS. The
identity of the servers is verified, and the communication between HP SmartStream 3D Command Center and the HP
Cloud servers is encrypted using the Advanced Encryption Standard (AES) algorithm in Cipher Block Chaining (CBC)
mode in order to ensure that the device data cannot be viewed or modified by any 3rd parties.
• The use of hostnames/static IP addresses for devices and the Command Center Server PC is needed to prevent
disconnection if IPs change.
• The Command Center Server PC needs to allow incoming traffic to Command Center so that Command Center clients
can connect to the server.
• Connection to HP Cloud requires the customer network to allow traffic from the Command Center Server to the
following endpoints:
o www.printos.com, port 443 (or https://www.printos.com)
o 3dpconf.heleni.me, port 443 (or https://3dpconf.heleni.me)
o *.amazonaws.com port 443 (or https://*.amazonaws.com)
o h19002.www1.hp.com port 21
• Proxy is taken from the system configuration if not configured in Command Center. Proxy authentication is supported.