Security - SSL/TLS Server Communication

This page allows you to set security on data sent and received by the printer when the printer uses HTTPS communication.
The data that are subject to security protection are IPP print jobs and information exchanged between the printer and web browsers.
These data will be encrypted using SSL/TLS communication.

This item appears if your printer supports SSL/TLS server communication.
The following settings will become active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.
If the optional hard disk unit is not installed on your printer, note that the data in the memory are cleared when the printer is turned off.

To access CentreWare Internet Services when data encryption is enabled, enter "https" before its address instead of "http".
Example of IP Address:
https://192.168.1.100/
Example of Internet Address:
https://xxx.yyy.zz.vvv/

SSL/TLS Server Communication
Select the [Enabled] check box if enabling SSL/TLS server communication.
If you do not have a certificate, "Disabled" is displayed. In such case, click [Generate Self-Signed Certificate] and create a certificate.

SSL/TLS Server Communication Port Number
Enter the port number that will accept requests from your web browser. The port number must be 443 or any number between 8000 and 9999. The default is 443.
If you changed the port number, enter a colon (:) and then the port number after the printer address when accessing CentreWare Internet Services.
http://Printer_Address:Port_Number/
Do not use the same number as the Port9100/IPP/WSD/HTTP port number.
WSD stands for Web Services on Devices.

LDAP - SSL/TLS Communication
Select the [Enabled] check box if enabling LDAP using SSL/TLS communication.
This item appears only when LDAPS (LDAP over SSL) is available.

SMTP - SSL/TLS Communication
Select an encryption type for SMTP communication from the following:


• Disabled
  Encryption is not used for SMTP communication.
  
  
• STARTTLS (if Available)
  Uses SSL/TLS communication if the mail server supports STARTTLS. SSL/TLS communication is not used if the mail server does not support STARTTLS.
  
  
• STARTTLS
  Uses SSL/TLS communication if the mail server supports STARTTLS.
  If the mail server does not support STARTTLS, communication with the mail server cannot be established.
  
  
• SSL/TLS
  Uses SSL/TLS communication.
  
  

Verify Remote Server Certificate
Select the [Enabled] check box if verifying certificate issued by the SSL server. This item is effective only when your printer works as SSL client.
This item appears only when LDAPS (LDAP over SSL) is available.

Generate Self-Signed Certificate
Click the [Generate Self-Signed Certificate] button to create a certificate. When clicked, [Create New Certificate] page appears.
This item is unavailable if a certificate is already created.

Upload Signed Certificate
Click the [Upload Signed Certificate] button to upload a certificate. When clicked, [Upload Signed Certificate] page appears.
This item appears only if the optional hard disk unit is installed and Data Encryption is enabled on your printer, and is available only when a certificate is already created and SSL/TLS server communication is enabled.

Certificate Management
Click the [Certificate Management] button to verify, export or delete the contents of the certificate. When clicked, [Certificate Management] page appears.
This item appears only when a certificate is already created and SSL/TLS server communication is enabled.
[Certificate Management] page changes whether the optional hard disk unit is installed and Data Encryption is enabled on your printer or not.
When Data Encryption is disabled on your printer, refer to [Certificate Management (Self-Signed Certificate only)].
When Data Encryption is enabled on your printer, refer to [Certificate Management (other than Self-Signed Certificate)].

[Apply] button
[Undo] button

---

Security - Create New Certificate

Set the following items to create a certificate.
If the optional hard disk unit is not installed on your printer, note that the data in the memory are cleared when the printer is turned off.

Public Key Method
Select the method of the public key from [RSA/SHA-1] and [RSA/SHA-256]. If you want to enhance security, select [RSA/SHA-256].
This setting becomes active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.

Public Key Size
Select the size of the public key from [512 bits], [1024 bits] and [2048 bits]. If you want to enhance security, select [2048 bits].
This setting becomes active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.

Issuer
Displays the issuer of the certificate. The issuer will be assigned automatically based on the printer name and MAC address. You cannot change the issuer once assigned.

Validity
Enter the period that the created certificate is effective from 1 to 9999 days.

[Generate Signed Certificate] button
Transfers the settings to the printer and creates the certificate.
It may take several seconds for the certificate to be created. Do not click [Generate Signed Certificate] button more than once.

[Back] button
Takes you back to the [SSL/TLS Server Communication] page without transferring the settings to the printer.

---

Security - Upload Signed Certificate

Set the following items to import a certificate to your printer.
The web browsers that support importing a certificate are Internet Explorer 6.0, 7.0 and 8.0. Mozilla Firefox cannot be used for importing a certificate.

Password
Specifies the password for decrypting the certificate data within 36 bytes. The characters that can be entered include alphanumeric characters and symbols. A space is unacceptable as a character.

Re-enter Password
Enter the password entered in [Password] for verification.

File Name
Enter the certificate file name you want to import within 64 bytes. A null cannot be set. If you want to choose the certificate file from dialog box, click [Browse] button.

[Browse] button
Click this to display the [Choose File to Upload] dialog box and choose the certificate file.

[Import] button
Click this to import the specified certificate file.

[Back] button
Takes you back to the [SSL/TLS Server Communication] page.

---

Security - Certificate Management (Self-Signed Certificate only)

Allows you to verify or delete the contents of the self-signed certificate.
The following items appear only when the self-signed certificate is created on the condition that Data Encryption is disabled on your printer.

• Issued To
  Displays the owner of the certificate.
  
  
• Issuer
  Displays the issuer of the certificate.
  
  
• Serial Number
  Displays the serial number of the certificate.
  
  
• Public Key Method
  Displays the method of the public key configured on the certificate.
  
  
• Public Key Size
  Displays the size of the public key configured on the certificate.
  
  
• Valid From
  Displays the starting date of the validity period.
  
  
• Valid Until
  Displays the ending date of the validity period.
  
  
• Status
  Displays the current status of the certificate.
  When the device does not have a clock and the validity period cannot be set, starting and ending date of the validity period are not displayed.
  
  
• Certificate Purpose
  Displays the intended use of the certificate.

[Delete] button
Click this to delete the certificate currently displayed on the window.
This setting will become active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.
If the optional hard disk unit is not installed on your printer, note that the data in the memory are cleared when the printer is turned off.

If you remove a previously-used network expansion card from one printer and install it in another printer, the certificate created on the previous printer is deleted. The SSL/TLS server communication setting becomes invalid too. After installing the network expansion card in another printer, you will need to create a certificate on that printer.

It may take several seconds for the certificate to be deleted. Do not click [Delete] button more than once.

[Back] button
Takes you back to the [SSL/TLS Server Communication] page.

---

Security - Certificate Management (other than Self-Signed Certificate)

This page allows you to manage the contents of the certificates.
The following items appear only when the optional hard disk unit is installed and Data Encryption is enabled on your printer.

Category
Select the category of certificates to be displayed from the following:


• [Local Device]
  Select this to display the certificates issued by local device.
• [Trusted Certificate Authorities]
  Select this to display the certificates issued by trusted certificate authorities.
• [Intermediate Certificate Authorities]
  Select this to display the certificates issued by intermediate certificate authorities.
• [Others]
  Select this to display the certificates issued by other category devices.

Certificate Purpose
Select the intended use of certificates to be displayed from the following:


• SSL Server
  Select this to display the certificates used for SSL server.
• SSL Client
  Select this to display the certificates used for SSL client.
• IPsec
  Select this to display the certificates used for IPsec.
• Wireless LAN (Server)
  Select this to display the certificates used for wireless LAN (server).
• Wireless LAN (Client)
  Select this to display the certificates used for wireless LAN (client).

Certificate Order
Select the order of certificates to be displayed from the following:


• Issued To: Ascending
  Select this to display certificates in ascending order of the owner.
• Issuer: Ascending
  Select this to display certificates in ascending order of the issuer.
• Expiration date: Ascending
  Select this to display certificates in ascending order of the ending date of the validity period.
• Expiration date: Descending
  Select this to display certificates in descending order of the ending date of the validity period.

[Display the List] button
Click this to display the list of certificates belong to the selected category and purpose.

[Back] button
Takes you back to the [SSL/TLS Server Communication] page.

---

Security - Certificate List

This page displays the list of certificates belong to the category and purpose selected in [Certificate Management (other than Self-Signed Certificate)].

Category List
The following items are displayed:


Category
Displays the category of the certificates.

Certificate Purpose
Displays the intended use of the certificates.

Issued To
Displays the owner of the certificates.

Validity
Displays the validity of certificates.

[Certificate Details] button
Click this to display the details of the certificate selected in [Issued To].

[Back] button
Takes you back to the [Certificate Management] page.

---

Security - Certificate Details

This page displays the details of certificates selected in [Certificate List].

Category
Displays the category of the certificate.

Issued To
Displays the owner of the certificate.

Issuer
Displays the issuer of the certificate.

Serial Number
Displays the serial number of the certificate.

Public Key Method
Displays the method of the public key configured on the certificate.

Public Key Size
Displays the size of the public key configured on the certificate.

Valid From
Displays the starting date of the validity period.

Valid Until
Displays the ending date of the validity period.

Status
Displays the current status of the certificate. When the device does not have a clock and the validity period cannot be set, starting and ending date of the validity period are not displayed.

Certificate Purpose
Displays the intended use of the certificate.

Certificate Selection Status
Displays the current selection status of the certificate.

E-mail Address
Displays the e-mail address of the certificate.

[Use this certificate] button
Click this to use the displayed certificate.
This setting will become active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.
If the optional hard disk unit is not installed on your printer, note that the data in the memory are cleared when the printer is turned off.

[Delete] button
Click this to delete the displayed certificate.
This setting will become active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.
If the optional hard disk unit is not installed on your printer, note that the data in the memory are cleared when the printer is turned off.

[Export this certificate] button
Click this to export the displayed certificate.

[Back] button
Takes you back to the [Certificate Management] page.