Home » HP Manuals » Print Servers » HP 635n » Manual Viewer

HP 635n HP Jetdirect Print Server Administrator's Guide (Firmware V.36) - Page 104

Table, Configuration Settings,

UPC - 882780301016

Add to My Manuals
Save this manual to your list of manuals

Page 104 highlights

The supported 802.1X authentication protocols and associated configuration depend on the print server model and firmware version. Available configuration settings are listed in Table 4-18 802.1X Configuration Settings on page 94. Table 4-18 802.1X Configuration Settings Item Description Enable Protocols Enable (check) the supported protocols used for 802.1X authentication on your network. ● PEAP: (Protected Extensible Authentication Protocol). PEAP uses digital certificates for network server authentication and passwords for client authentication. PEAP requires an EAP User Name, EAP Password, and CA Certificate. Dynamic encryption keys are also used. ● EAP-TLS: (Extensible Authentication Protocol using Transport Layer Security, RFC 2716). EAP-TLS is a mutual authentication protocol based on digital certificates for authentication of both the client and the network authentication server. EAP-TLS requires an EAP User Name, Jetdirect certificate and CA certificate. Dynamic encryption keys are also used. User Name Specify an EAP/802.1X user name (up to 128 characters maximum) for this device. The default user name is the default host name of the print server, NPIxxxxxx, where xxxxxx are the last six digits of the LAN hardware (MAC) address. Password, Confirm Password Specify an EAP/802.1X password (up to 128 characters maximum) for this device. Enter the password again in the Confirm Password field to ensure it was properly entered. Server ID Specify the Server ID validation string that identifies and validates the authentication server. The Server ID string is specified on the digital certificate issued by a trusted Certificate Authority (CA) for the authentication server. The entry may be a partial string (right-most characters) )unless the Require Exact Match checkbox is enabled. Encryption Strength Specify the minimum encryption strength that can be used during communications with the authentication server. You may select Low, Medium, or High encryption strength. For each encryption strength, ciphers are specified to identify the weakest cipher allowed. Jetdirect Ceritificate The Jetdirect certificate is used to validate the identity of the Jetdirect device to clients and to network authentication servers. A self-signed Jetdirect certificate is pre-installed. To install a replacement, click Configure. CA Certificate To validate the authentication server's identity, the authentication server's certificate or a CA (or "Root") certificate must be installed on the print server. This CA certificate must be issued by the Certificate Authority who signed the authentication server's certificate. To configure or install a CA certificate, click Configure. Authentication Behavior: Reauthenticate on Apply Enable (check) or disable (clear) this checkbox to control authentication when you click Apply on this page, assuming valid configuration entries have been made. NOTE: This parameter does not apply to security or other configuration wizards. Changes to parameters through a wizard will always cause the print server to reauthenticate. Restore Defaults If disabled (default), the print server will not attempt reauthentication unless configuration changes cause the print server to disconnect and reconnect to the network. If enabled, the print server will always try to reauthenticate using the configuration values set. Click this button to restore 802.1X configuration settings to factory default values. 94 Chapter 4 Embedded Web Server (V.36.xx) ENWW

Section	Page
Introducing the HP Jetdirect Print Server	11
Supported Print Servers	11
Supported Network Protocols	12
Security Protocols	14
SNMP (IP and IPX)	14
HTTPS	14
Authentication	14
EAP/802.1X Server-Based Authentication	14
IPsec/Firewall	15
Supplied Manuals	15
HP Support	15
HP Online Support	15
Firmware Upgrades	15
Firmware Installation Tools	16
HP Support By Phone	16
Product Registration	16
Product Accessibility	17
HP Software Solutions Summary	19
HP Install Network Printer Wizard (Windows)	20
Requirements	20
HP Jetdirect Printer Installer for UNIX	20
HP Web Jetadmin	21
System Requirements	21
Installing HP Web Jetadmin	21
Verifying Installation and Providing Access	21
Configuring and Modifying a Device	21
Removing HP Web Jetadmin Software	22
Internet Printer Connection Software	22
HP-Supplied Software	22
HP Software System Requirements	22
HP Software Supported Proxies	23
Microsoft Supplied Software	23
Windows 2000/XP/Server 2003 Integrated Software	23
Novell Supplied Software	23
Mac OS Network Installation	24
TCP/IP Configuration	27
IPv6 Configuration	27
IPv6 Address Introduction	27
IPv6 Address Configuration	28
Link-Local Address	28
Stateless Addresses	28
Stateful Addresses	29
Using DNS	29
Tools and Utilities	30
IPv4 Configuration	30
Server-Based and Manual TCP/IP Configuration (IPv4)	30
Default IP Address (IPv4)	31
Default IP Address Will Not Be Assigned	31
Default IP Address Will Be Assigned	31
Default IPv4 Address Configuration Options	32
Default IPv4 Behavior	33
TCP/IP Configuration Tools	33
Using BOOTP/TFTP (IPv4)	34
Why Use BOOTP/TFTP?	34
BOOTP/TFTP on UNIX	35
Using DHCP (IPv4)	46
UNIX Systems	46
Windows Systems	47
To Discontinue DHCP Configuration	48
Using RARP (IPv4)	49
Using the arp and ping Commands (IPv4)	50
Using Telnet (IPv4)	51
Creating a Telnet Connection	51
A Typical Telnet Session	52
User Interface Options	53
Using Telnet to Erase the Existing IP Settings	68
Moving to Another Network (IPv4)	69
Using the Embedded Web Server	69
Using the Printer Control Panel	69
Embedded Web Server (V.36.xx)	71
Requirements	72
Compatible Web Browsers	72
Browser Exceptions	72
Supported HP Web Jetadmin Version	72
Viewing the Embedded Web Server	72
Operating Notes	74
HP Jetdirect Home Tab	74
Device Tabs	75
Networking Tab	75
Sending Product Information to HP	76
TCP/IP Settings	77
Summary	77
Network Identification	78
TCP/IP(v4)	79
TCP/IP(v6)	80
Config Precedence	81
Advanced	82
Network Settings	83
IPX/SPX	84
AppleTalk	85
DLC/LLC	86
SNMP	86
Other Settings	87
Misc. Settings	87
Firmware Upgrade	90
LPD Queues	90
USB Settings	92
Support Info	93
Refresh Rate	93
Privacy Settings	93
Select Language	94
Security: Settings	94
Status	94
Wizard	94
Restore Defaults	96
Authorization	96
Admin. Account	96
Certificates	97
Configuring Certificates	98
Access Control	100
Mgmt. Protocols	101
Web Mgmt.	101
SNMP	102
SNMP v3	102
Other	102
802.1X Authentication	103
IPsec/Firewall	105
Network Statistics	105
Protocol Info	105
Configuration Page	105
Other Links	105
? (Help)	105
Support	105
IPsec/Firewall Configuration (V.36.xx)	107
Default Rule Example	110
IPsec Security Associations (SA)	110
HP Jetdirect IPsec/Firewall Wizard	111
Limitations to Rules, Templates and Services	111
Step 1: Specify Address Template	112
Create Address Template	113
Step 2: Specify Service Template	113
Create Service Template	113
Manage Services	114
Manage Custom Services	114
Step 3: Specify Action	115
Specify IPsec/Firewall Template	116
Create IPsec Template	116
Identity Authentication	117
Kerberos	117
Kerberos Settings	118
IKEv1 Phase 1 (Authentication)	119
IKEv1 Phase 2 / Quick Mode (IPsec Protocols)	120
Advanced IKE Settings	120
IPsec Protocols (Manual Keys)	121
Manual Keys	121
Rule Summary	122
Configuring Windows Systems	122
Security Features (V.36.xx)	123
Using Security Features	126
Troubleshooting the HP Jetdirect Print Server	127
Resetting to Factory Defaults	128
Example: Cold Reset Using the Service Menu	129
To Disable a Jetdirect Embedded Print Server (V.36.xx)	130
General Troubleshooting	131
Troubleshooting Chart - Assessing the Problem	131
Procedure 1: Verifying that the Printer is On and Online	132
Procedure 2: Printing an HP Jetdirect Configuration Page	132
Procedure 3: Resolving Printer Display Error Messages	133
Procedure 4: Resolving Printer Communication Problems with the Network	134
HP Jetdirect Configuration Pages	137
HP Jetdirect Configuration Page	138
Status Field Error Messages	138
Configuration Page Format	138
Configuration Page Messages	139
HP Jetdirect Configuration/General Information	139
Security Settings	141
Network Statistics	143
TCP/IP Protocol Information	143
IPv4 Section	144
IPv6 Section	146
IPX/SPX Protocol Information	147
Novell/NetWare Parameters	147
AppleTalk Protocol Information	148
DLC/LLC Protocol Information	149
Error Messages	149
HP Jetdirect Security Page	156
Security Settings	157
IPsec Error Log	159
Local IP Addresses	159
IPsec Stats	159
IKE Stats	160
IPsec Rules	160
IPsec SA Table	160
Available Network Services	161
LPD Printing	163
About LPD	164
Requirements for Configuring LPD	164
LPD Setup Overview	165
Step 1. Setting Up IP Parameters	165
Step 2. Setting Up Print Queues	165
Step 3. Printing a Test File	166
LPD on UNIX Systems	166
Configuring Print Queues for BSD-based Systems	166
Configuring Print Queues Using SAM (HP-UX systems)	167
Printing a Test File	168
LPD on Windows 2000/Server 2003 Systems	169
Installing TCP/IP Software	169
Configuring a Network Printer for Windows 2000/Server 2003 Systems	170
Verifying the Configuration	171
Printing from Windows Clients	171
LPD on Windows XP Systems	171
Adding Windows Optional Networking Components	171
Configuring a Network LPD Printer	172
Adding a New LPD Printer	172
Creating an LPR Port for an Installed Printer	172
FTP Printing	175
Requirements	175
Print Files	175
Using FTP Printing	175
FTP Connections	175
Control Connection	175
Data Connection	176
FTP Login	176
Ending the FTP Session	177
Commands	177
Example of an FTP Session	178
HP Jetdirect Control Panel Menus (V.36.xx)	179
Jetdirect Menus for Graphical Control Panels	180
Jetdirect EIO Menus for Classic Control Panels	188
Open Source Licensing Statements	191
gSOAP	191
OpenSSL	192
OpenSSL License	192
Original SSLeay License	192

Match case Limit results 1 per page

The supported 802.1X authentication protocols and associated configuration depend on the print server

model and firmware version. Available configuration settings are listed in

Table

802.1X

Configuration Settings

on page

Table 4-18

802.1X Configuration Settings

Item

Description

Enable Protocols

Enable (check) the supported protocols used for 802.1X authentication on your network.

●

PEAP

: (Protected Extensible Authentication Protocol). PEAP uses digital certificates

for network server authentication and passwords for client authentication. PEAP

requires an EAP User Name, EAP Password, and CA Certificate. Dynamic encryption

keys are also used.

●

EAP-TLS

: (Extensible Authentication Protocol using Transport Layer Security, RFC

2716). EAP-TLS is a mutual authentication protocol based on digital certificates for

authentication of both the client and the network authentication server. EAP-TLS

requires an EAP User Name, Jetdirect certificate and CA certificate. Dynamic

encryption keys are also used.

User Name

Specify an EAP/802.1X user name (up to 128 characters maximum) for this device. The

default user name is the default host name of the print server, NPIxxxxxx, where xxxxxx

are the last six digits of the LAN hardware (MAC) address.

Password

Confirm Password

Specify an EAP/802.1X password (up to 128 characters maximum) for this device. Enter

the password again in the Confirm Password field to ensure it was properly entered.

Server ID

Specify the Server ID validation string that identifies and validates the authentication

server. The Server ID string is specified on the digital certificate issued by a trusted

Certificate Authority (CA) for the authentication server. The entry may be a partial string

(right-most characters) )unless the

Require Exact Match

checkbox is enabled.

Encryption Strength

Specify the minimum encryption strength that can be used during communications with

the authentication server. You may select

Low

Medium

, or

High

encryption strength. For

each encryption strength, ciphers are specified to identify the weakest cipher allowed.

Jetdirect Ceritificate

The Jetdirect certificate is used to validate the identity of the Jetdirect device to clients and

to network authentication servers. A self-signed Jetdirect certificate is pre-installed. To

install a replacement, click

Configure

CA Certificate

To validate the authentication server's identity, the authentication server's certificate or a

CA (or “Root”) certificate must be installed on the print server. This CA certificate must be

issued by the Certificate Authority who signed the authentication server's certificate.

To configure or install a CA certificate, click

Configure

Authentication Behavior:

Reauthenticate on Apply

Enable (check) or disable (clear) this checkbox to control authentication when you click

Apply

on this page, assuming valid configuration entries have been made.

NOTE:

This parameter does not apply to security or other configuration wizards.

Changes to parameters through a wizard will always cause the print server to

reauthenticate.

If disabled (default), the print server will not attempt reauthentication unless configuration

changes cause the print server to disconnect and reconnect to the network.

If enabled, the print server will always try to reauthenticate using the configuration values

set.

Restore Defaults

Click this button to restore 802.1X configuration settings to factory default values.

Chapter 4

Embedded Web Server (V.36.xx)

ENWW