Security - SSL/TLS Server Communication
This page allows you to set security on data sent and received by the printer when the printer uses HTTPS communication.
The data that are subject to security protection are IPP print jobs and information exchanged between the printer and web browsers.
These data will be encrypted using SSL/TLS communication.
This item appears if your printer supports SSL/TLS server communication.
The following settings will become active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.
Turning off your printer will clear the data in the main memory but not the one stored in the optional device memory, if installed.
To access CentreWare Internet Services when data encryption is enabled, enter "https" before its address instead of "http".
Example of IP Address:
https://192.168.1.100/
Example of Internet Address:
https://xxx.yyy.zz.vvv/
SSL/TLS Server Communication
Select the [Enabled] check box if enabling SSL/TLS server communication.
If you do not have a certificate, "Disabled" is displayed. In such case, click [Generate Self-Signed Certificate] and create a certificate.
SSL/TLS Server Communication Port Number
Enter the port number that will accept requests from your web browser. The port number must be 443 or any number between 8000 and 9999. The default is 443.
If you changed the port number, enter a colon (:) and then the port number after the printer address when accessing CentreWare Internet Services.
http://Printer_Address:Port_Number/
Do not use the same number as the Port9100/IPP/WSD/HTTP port number.
WSD stands for Web Services on Devices.
LDAP-SSL/TLS Communication
Select the [Enabled] check box if enabling LDAP using SSL/TLS communication.
This item appears only when LDAPS (LDAP over SSL) is available.
SMTP-SSL/TLS Communication
Select the type of SMTP-SSL/TLS Communication from the following.
- Disabled
- STARTTLS (if Available)
- STARTTLS
- SSL/TLS
Verify Remote Server Certificate
Select the [Enabled] check box if verifying certificate issued by the SSL server. This item is effective only when your printer works as SSL client.
This item appears only when certificate verification is available.
Generate Self-Signed Certificate
Click the [Generate Self-Signed Certificate] button to create a certificate. When clicked, [Create New Certificate] page appears.
This item is not available if a certificate is already created.
Upload Signed Certificate
Click the [Upload Signed Certificate] button to upload a certificate. When clicked, [Upload Signed Certificate] page appears.
This item appears only if the optional device memory is installed and Data Encryption is enabled on your printer, and is available only when a certificate is already created and SSL/TLS server communication is enabled.
Certificate Management
Click the [Certificate Management] button to verify, export or delete the contents of the certificate. When clicked, [Certificate Management] page appears.
This item is available only when a certificate is already created and SSL/TLS server communication is enabled.
[Certificate Management] page changes whether the optional device memory is installed and Data Encryption is enabled on your printer or not.
When Data Encryption is disabled on your printer, refer to [Certificate Management (Self-Signed Certificate only)].
When Data Encryption is enabled on your printer, refer to [Certificate Management (other than Self-Signed Certificate)].
Delete All Certificates
Click the [Delete All Certificates] button to delete all certificates. When clicked, the confirmation message appears.
This item appears only if the optional device memory is installed and Data Encryption is enabled on your printer, and is available only when a certificate is already created and SSL/TLS server communication is enabled.
[Apply] button
[Undo] button
Security - Create New Certificate
Set the following items to create a certificate.
Turning off your printer will clear the data in the main memory but not the one stored in the optional device memory, if installed.
Public Key Method
Select the method of the public key from [RSA/SHA-1] and [RSA/SHA-256]. If you want to enhance security, select [RSA/SHA-256].
This setting becomes active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.
Public Key Size
Select the size of the public key from [512 bits], [1024 bits] and [2048 bits]. If you want to enhance security, select [2048 bits].
This setting becomes active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.
Issuer
Displays the issuer of the certificate. The issuer will be assigned automatically based on the printer name and MAC address. You cannot change the issuer once assigned.
Validity
Set the validity period of new certificate. The validity period can be set within the range of 1 to 9999 days.
[Generate Signed Certificate] button
Transfers the settings to the printer and creates the certificate.
It may take several seconds for the certificate to be created. Do not click [Generate Signed Certificate] button more than once.
[Back] button
Takes you back to the [SSL/TLS Server Communication] page without transferring the settings to the printer.
Security - Upload Signed Certificate
Set the following items to import a certificate to your printer.
The web browsers that support importing a certificate are Internet Explorer 6.0, 7.0 and 8.0. Mozilla Firefox cannot be used for importing a certificate.
Password
Specifies the password for decrypting the certificate data within 36 bytes. The characters that can be entered include alphanumeric characters and symbols.
A space is unacceptable as a character.
Re-enter Password
Enter the password entered in [Password] for verification.
File Name
Click the [Browse] button to choose the cerfiticate file you want to import.
[Browse] button
Click this to display the [Choose File to Upload] dialog box and choose the certificate file.
[Import] button
Click this to import the specified certificate file.
[Back] button
Takes you back to the [SSL/TLS Server Communication] page.
Security - Certificate Management (Self-Signed Certificate only)
Allows you to verify or delete the contents of the certificate.
- Issued To
Displays the owner of the certificate.
- Issuer
Displays the issuer of the certificate.
- Serial Number
Displays the serial number of the certificate.
- Public Key Method
Displays the method of the public key configured on the certificate.
- Public Key Size
Displays the size of the public key configured on the certificate.
- Valid From
Displays the starting date of the validity period.
- Valid Until
Displays the ending date of the validity period.
- Status
Displays the current status of the certificate.
When the device does not have a clock and the validity period cannot be set, starting and ending date of the validity period are not displayed.
- Certificate Purpose
Displays the intended use of the certificate.
[Delete] button
Click this to delete the certificate currently displayed on the window.
This setting will become active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.
Turning off your printer will clear the data in the main memory but not the one stored in the optional device memory, if installed.
If you remove a previously-used network expansion card from one printer and install it in another printer, the certificate created on the previous printer is deleted. The SSL/TLS server communication setting becomes invalid too. After installing the network expansion card in another printer, you will need to create a certificate on that printer.
It may take several seconds for the certificate to be deleted. Do not click [Delete] button more than once.
[Back] button
Takes you back to the [SSL/TLS Server Communication] page.
Security - Certificate Management (other than Self-Signed Certificate)
This page allows you to manage the contents of the certificates.
The following items appear only when the optional device memory is installed and Data Encryption is enabled on your printer.
Category
Select the category of certificates to be displayed from the following:
- [Local Device]
Select this to display the certificates issued by local device.
- [Trusted Certificate Authorities]
Select this to display the certificates issued by trusted certificate authorities.
- [Intermediate Certificate Authorities]
Select this to display the certificates issued by intermediate certificate authorities.
- [Others]
Select this to display the certificates issued by other category devices.
Certificate Purpose
Select the intended use of certificates to be displayed from the following:
- SSL Server
Select this to display the certificates used for SSL server.
- SSL Client
Select this to display the certificates used for SSL client.
- IPsec
Select this to display the certificates used for IPsec.
- Wireless LAN (Server)
Select this to display the certificates used for wireless LAN (server).
- Wireless LAN (Client)
Select this to display the certificates used for wireless LAN (client).
Certificate Order
Select the order of certificates to be displayed from the following:
- Issued To: Ascending
Select this to display certificates in ascending order of the owner.
- Issuer: Ascending
Select this to display certificates in ascending order of the issuer.
- Expiration date: Ascending
Select this to display certificates in ascending order of the ending date of the validity period.
- Expiration date: Descending
Select this to display certificates in descending order of the ending date of the validity period.
[Display the List] button
Click this to display the list of certificates belong to the selected category and purpose.
[Back] button
Takes you back to the [SSL/TLS Server Communication] page.
Security - Certificate List
This page displays the list of certificates belong to the category and purpose selected in [Certificate Management (other than Self-Signed Certificate)].
Certificate List
The following items are displayed:
Category
Displays the category of the certificates.
Certificate Purpose
Displays the intended use of the certificates.
Issued To
Displays the owner of the certificates. Select a certificate you want to verify, export or delete.
Validity
Displays the validity of certificates.
[Certificate Details] button
Click this to display the details of the certificate selected in [Issued To].
[Back] button
Takes you back to the [Certificate Management] page.
Security - Certificate Details
This page displays the details of certificates selected in [Certificate List].
Category
Displays the category of the certificate.
Issued To
Displays the owner of the certificate.
Issuer
Displays the issuer of the certificate.
Serial Number
Displays the serial number of the certificate.
Public Key Method
Displays the method of the public key configured on the certificate.
Public Key Size
Displays the size of the public key configured on the certificate.
Valid From
Displays the starting date of the validity period.
Valid Until
Displays the ending date of the validity period.
Status
Displays the current status of the certificate.
When the device does not have a clock and the validity period cannot be set, starting and ending date of the validity period are not displayed.
Certificate Purpose
Displays the intended use of the certificate.
Certificate Selection Status
Displays the current selection status of the certificate.
Email Address
Displays the e-mail address of the certificate.
[Use this certificate] button
Click this to use the displayed certificate.
This setting will become active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.
[Delete] button
Click this to delete the displayed certificate.
This setting will become active after rebooting the printer from CentreWare Internet Services or manually turning off and on the printer.
[Export this certificate] button
Click this to export the displayed certificate.
[Back] button
Takes you back to the [Certificate Management] page.