Manualshelf

HP LaserJet Enterprise, Managed - Overview of the Secure by Default settings for HP Solutions (white paper)

ManualsBrandsHP ManualsDesktopsHP LaserJet Enterprise M506x
1234
3
1. Enable Cross-site Request Forgery (CSRF) prevention
This feature is enabled by default and is designed to prevent browser redirection to a
malicious webserver. It can also prevent legitimate interactions with the device such as
Solution configuration that are dependent on HTTP Post methods.
Important: In FutureSmart bundle 4.6, this feature protects against CSRF risks and may
potentially impact Solutions.
2. Enable PJL Device Access Commands
This feature is disabled by default. When enabled, it allows printer configuration commands
to be sent within print jobs using Printer Job Language (PJL).
Important: Some solutions may not install or function properly when this feature is disabled.
3. Enable PJL Drive Access
This feature is disabled by default. When enabled, it allows access to device storage using
PJL commands.
Important: Installation of solutions to the printer’s storage (HDD, SSD, USB drive, CF drive,
etc.) may be blocked if PJL drive access is not enabled.
Managing the Settings
This section describes strategies for managing Secure by Default settings.
1. Embedded Web Server (EWS)
The device EWS is a convenient way to manage settings on a small number of devices. Prior
to installation of the Solution agent or configuration, disable these Secure by Default setting
s
on each of the devices. Following installation or configuration of the solution, use the EWS to
re-enable Secure by Default settings.
2. HP Web JetAdmin (WJA)
For larger device fleets, use WJA to manage the Secure by Default settings. A configuration
t
emplate can be created to disable these settings prior to Solution installation or
configuration. A second template can be used to re-enable the Secure by Default setting
s
a
fter the deployment is complete. The templates can be used again whenever Solution
configuration changes are needed.
NOTE: WJA compatibility with Secure by Default settings was introduced in version 10.4 SR2
w
ith FP6.