Manualshelf

HP Enterprise printers and scanners - Imaging and Printing Security Best Practices (white paper)

ManualsBrandsHP ManualsDesktopsHP LaserJet Managed Flow MFP E72525-E72535z - Base Product 25-35 ppm
12345678910
We developed the process for configuring this checklist using HP Web Jetadmin to manage all the printing products at the same
time.
This checklist covers only those parts of HP Web Jetadmin that pertain to appropriate security settings. See the user guides, admin
guides, and help files for information on other configurations.
Cautions
HP is dedicated to providing the best and latest security information available for MFPs. This checklist is meant to help you to
improve printing security in your workplace. HP has tested this checklist to ensure that printers continue to provide the best
possible performance while averting possible security threats; however, some of these settings can cause unexpected problems in
your environment especially if you are using custom print solutions. Please be aware of the following cautions before you begin:
Follow the Checklist in Order
The settings in this checklist are presented in a specific order to ensure success. Many of these security settings can be configured
successfully only in the correct order. You should follow the instructions in this checklist exactly and avoid making additional
configurations during this process. Other settings can disrupt the order and cause unexpected results.
Understand the Ramifications
HP Web Jetadmin and Enterprise printers include a wide variety of useful settings designed to make work easier and more
productive. However, raising the level of security may require sacrifices in these areas. Be aware that applying this checklist will
limit or even eliminate some of these features. See the Ramifications chapter for more information.
HP provides this checklist as a guide to best-practice security configurations that allow for reasonable convenience and usability.
Some of the recommended settings create extra steps when accessing and managing HP Enterprise Printers. For instance, once
you disable EWS configuration, you cannot access it again until you re-enable EWS configuration from HP Web Jetadmin.
These settings are tested in a variety of conditions and using various combinations of simulated customer environments. Testing
includes configuring all of the Enterprise products at the same time and verifying that the affected features continue to function.
However, it is impossible to test these configurations in all possible network environments. You should test these settings in your
environment to ensure that you understand their effects. You may find that some of the settings cause undesirable limitations. See
the Ramifications section for further information and cautions.
Continue to be Vigilant
This checklist is provided only as a complementary guide to known best practices for increasing Enterprise product security. HP
does not claim or warrant that these configurations prevent misuse of Enterprise products or networks or that they prevent
malicious attacks on Enterprise products or networks. Use this document at your own risk.
MFP Environment
NIST defines several types of user environments, many of which are compatible with HP LaserJet and Color LaserJet Enterprise
products. However, this checklist applies for HP devices in an enterprise environment or a small to medium business environment.
These environments use most of the network features available with HP products. Configuration of the NIST checklist in this
document primarily uses HP Web Jetadmin unless a security feature can only be configured using the EWS. You should configure as
much of this checklist as possible while adapting the settings to your specific situation.
Assumptions
This checklist makes some assumptions about network administrators and about enterprise environments:
Network administrators: This checklist assumes that readers are trained network administrators who are familiar with
common networking practices such as configuring HP Jetdirect connections and using HP Web Jetadmin. Administrators
should have read the HP product User Guide, the Administrator guide, the Jetdirect administrator guide; Web Jetadmin
user guides, and help files. This checklist relies on these materials for necessary information. All of these guides are
available by searching for them at hp.com.