HP Color LaserJet 4730 HP LaserJet MFP and Color MFP Products - Configuring Se - Page 62

EWS Config - drivers

Get HP Color LaserJet 4730 - Multifunction Printer PDF manuals and user guides View all HP Color LaserJet 4730 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 62 highlights

Network Page Options • Configure Job Timeout. The Job Timeout option enables the MFPs to move on from jobs that lack proper end of job signals. The MFPs will be able to switch protocols to continue with other jobs rather than waiting indefinitely for improperly formatted jobs to finish. • Configure Encryption Strength to High. The encryption strength setting covers communication between a PC and the Embedded Web Server. When HTTPS is configured (as recommended in this checklist), communication is encrypted according to this Encryption Strength setting. With Encryption Strength set to High, users will find that the EWSs are accessible only from web browsers that support that level of HTTPS communications. This checklist recommends disabling EWS Config during normal use of MFPs. This removes all access to the EWSs; however, you should configure this setting for times when you temporarily enable EWS Config to make changes to configurations. • Configure Enable Features options (do not disable EWS Config at this point). These options enable or disable various supported features for the MFP. These features are designed for access and convenience on the network, but they should be disabled when not in use (sometimes only for best-practice control of the networking capabilities). The following list explains the ramifications of each feature: • Disable Telnet Config. Telnet Config is an access point used by some older (legacy) printer management tools. Jetdirect also supports some Telnet commands. Telnet Config transmits data in clear text, and it should not be used. With it disabled, MFPs will deny access to Telnet sessions. Web Jetadmin does not use Telnet Config; thus disabling it has no affect on it. It disables other tools, but Web Jetadmin is the only solution recommended for managing HP MFPs. • Disable SLP Config. SLP Config accommodates discovery features of Novell (depending on how Novell is configured). Disabling it disables these features. Novell will not recognize the MFPs on the network. Thus if your network uses these features of Novell, you should enable SLP Config. • Disable FTP Printing. FTP Printing enables some methods of upgrading MFP firmware, and it allows for uploading files onto MFP hard drives. HP recommends disabling it and using Web Jetadmin to upgrade firmware. MFPs will deny access to FTP sessions. • Disable LPD Printing. LPD Printing is the protocol necessary for printing in UNIX, HPUX, or Linux environments. You should disable LPD Printing unless your network includes UNIX workstations that might print using the MFPs. With this option disabled, MFPs will deny access to UNIX machines. • Enable 9100 Printing. 9100 Printing should always be enabled. It is the standard printing protocol used by MFP print drivers. Disabling 9100 Printing would disable all printing for most users. • Disable IPP Printing. IPP Printing is a protocol for printing directly from the Internet. It is not secure, and it should not be used. With it disabled, the MFPs will deny access to direct printing from the Internet. Print jobs generated from web browsers using the installed print driver are not affected. • Disable MDNS Config. MDNS Config resolves host names with IP addresses in small networks without DNS servers. Most enterprise networks include DNS servers and do not require this service. With this option disabled, a non-DNS network will not recognize the MFPs. If your network does not include a DNS server, you should enable MDNS Config. HP LaserJet and Color LaserJet MFP Security Checklist 62

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
HP LaserJet and Color LaserJet MFP Security Checklist
62
Network Page Options
Configure
Job Timeout
. The
Job Timeout
option enables the MFPs to move on from jobs
that lack proper end of job signals. The MFPs will be able to switch protocols to continue with
other jobs rather than waiting indefinitely for improperly formatted jobs to finish.
Configure
Encryption Strength
to
High
. The encryption strength setting covers
communication between a PC and the Embedded Web Server. When HTTPS is configured
(as recommended in this checklist), communication is encrypted according to this Encryption
Strength setting.
With
Encryption Strength
set to
High
, users will find that the EWSs are accessible only from
web browsers that support that level of
HTTPS communications.
This checklist recommends disabling EWS Config during normal use of MFPs. This removes
all access to the EWSs; however, you should configure this setting for times when you
temporarily enable EWS Config to make changes to configurations.
Configure
Enable Features
options (do not disable
EWS Config
at this point). These options
enable or disable various supported features for the MFP. These features are designed for
access and convenience on the network, but they should be disabled when not in use
(sometimes only for best-practice control of the networking capabilities). The following list
explains the ramifications of each feature:
Disable
Telnet Config
.
Telnet Config
is an access point used by some older (legacy)
printer management tools. Jetdirect also supports some Telnet commands. Telnet Config
transmits data in clear text, and it should not be used. With it disabled, MFPs will deny
access to Telnet sessions.
Web Jetadmin does not use
Telnet Config
; thus disabling it has no affect on it. It
disables other tools, but Web Jetadmin is the only solution recommended for managing
HP MFPs.
Disable
SLP Config
.
SLP Config
accommodates discovery features of Novell
(depending on how Novell is configured). Disabling it disables these features. Novell will
not recognize the MFPs on the network. Thus if your network uses these features of
Novell, you should enable SLP Config.
Disable
FTP Printing
.
FTP Printing
enables some methods of upgrading MFP firmware,
and it allows for uploading files onto MFP hard drives. HP recommends disabling it and
using Web Jetadmin to upgrade firmware. MFPs will deny access to FTP sessions.
Disable
LPD Printing
.
LPD Printing
is the protocol necessary for printing in UNIX,
HPUX, or Linux environments. You should disable LPD Printing unless your network
includes UNIX workstations that might print using the MFPs. With this option disabled,
MFPs will deny access to UNIX machines.
Enable
9100 Printing
.
9100 Printing
should always be enabled. It is the standard
printing protocol used by MFP print drivers. Disabling
9100
Printing
would disable all
printing for most users.
Disable
IPP Printing
.
IPP Printing
is a protocol for printing directly from the Internet. It is
not secure, and it should not be used. With it disabled, the MFPs will deny access to
direct printing from the Internet. Print jobs generated from web browsers using the
installed print driver are not affected.
Disable
MDNS Config
.
MDNS Config
resolves host names with IP addresses in small
networks without DNS servers. Most enterprise networks include DNS servers and do not
require this service. With this option disabled, a non-DNS network will not recognize the
MFPs. If your network does not include a DNS server, you should enable MDNS Config.