Manualshelf

HP Enterprise printers and scanners - Imaging and Printing Security Best Practices (white paper)

ManualsBrandsHP ManualsDesktopsHP LaserJet Managed Flow MFP E72525-E72535z - Base Product 25-35 ppm
12345678910
Enterprise products: This checklist covers security settings for specific HP devices outlined at the beginning of this
document. It is meant to enable you to configure multiple devices simultaneously. It assumes that the devices are turned
on, connected to the network, and in the factory default state.
Most of the settings recommended in this checklist apply to other HP printers and devices; however, this checklist is tested
and known to be successful only with the specified device models.
Updated firmware: This checklist assumes that each device has updated system firmware and Jetdirect firmware (if a
Jetdirect product is in use). You should use the latest firmware available, but realize that updated firmware may have new
features not covered in this checklist. Updated firmware is available for download and installation at hp.com.
Web Jetadmin Version 10.4: This checklist is written for use with HP Web Jetadmin Version 10.4 and above.
Enterprise environment: This checklist is created and tested in a TCP/IP enterprise environment. However, most of the
settings are applicable to any network.
Network connection: This checklist assumes that each device is connected directly to a local area network via Jetdirect or
Jetdirect inside (JDI) internal network port. Other connections, such as direct-connect via USB are not covered in this
checklist (this checklist recommends disabling direct-connect ports).
Settings are only suggested: All settings in this checklist are meant only as suggestions for best-practice security in
common enterprise environments. Use it as a reference, and make judgments about each recommended setting before
configuring your Enterprise products.
Internet and intranet security: This checklist assumes that your network includes basic security configurations and
components. All MFPs should be installed behind network firewalls and other standard tools such as updated virus
protection applications.
Solutions covered
This checklist covers MFP security settings found in HP Web Jetadmin. This checklist covers no other solutions or applications.
Organization
This checklist includes the following chapters:
Threat Model: The Threat Model chapter explains the security circumstances relating to MFPs. It follows the Microsoft®
STRIDE model.
Basic Network Security for Multiple HP Devices: The Network Security for Multiple MFPs chapter provides step-by-step
instructions for configuring MFP security settings.
Advanced Security for Multiple HP Devices: The Advanced Security for Multiple HP Devices provides some limited
information on where to find configuration settings in WJA for advanced network configurations.
Settings List: The Settings List chapter provides a bulleted list of the recommended settings with checkboxes. It does not
include instructions or explanations.
Default Settings: The Default Settings chapter lists each recommended setting with its corresponding default setting.
Ramifications: The Ramifications chapter explains the possible limitations implied with each recommended setting.
Physical Security: The Physical Security chapter explains security concerns in workplaces where MFPs are installed. It
covers security for picking up print jobs, copying, and scanning. This section includes suggestions for securing the
locations where MFPs are installed and for securing MFP internal hardware.
Appendix 1: Glossary and Acronyms
Appendix 2: HP FutureSmart products
4