Table of Contents
Advertisement
Tips
• The subnet mask value indicates the number of bits
that are masked off from the left. For example, the
subnet mask value for 255.255.255.0 is 24.
If you set "192.168.0.0/24" and [Allow], computers
having an IP address between 192.168.0.0 and
192.168.0.255 have access allowed.
• You can access the unit even from a computer with an
IP address whose access right is set to [Deny], if you
enter the user name and password set for the
Administrator using the [User] tab of the [Security]
page on the authentication screen.
[SSL] tab
Use to configure the SSL or TLS function (hereinafter
referred to as SSL). Configuring these settings allows
the unit to use SSL communication with client devices.
Notes
• The China model does not support the SSL function.
• When using the SSL function, always configure the
settings after setting the date and time of the unit. If
the date and time are not set correctly, it may not be
possible to connect to the unit using a web browser.
• Reload the web browser after you change the SSL
settings.
To enable the SSL function
Select [Enable] from the [SSL Function] pull-down
menu to enable the SSL function.
When [Enable (Allow HTTP connection for some
clients)] is selected, both SSL connections and HTTP
connections are allowed.
When [Enable] is selected, only SSL connections are
allowed.
Precautions with SSL connections
When you use only SSL connections with the SSL
function set to [Enable], you will not be able to access
the unit if the SSL function is not working properly.
In this case, you must reset the unit to the factory
settings. (All settings will be initialized.)
To avoid this, check that SSL connection can be
established before configuration by performing the
following steps.
1
Set the SSL function to [Enable (Allow HTTP
connection for some clients)].
Note
Always select [Enable (Allow HTTP connection for
some clients)]. If it is not selected and the SSL
connection fails, you will not be able to access the
unit.
2
Click the [OK] button to close the web
browser.
3
Display the web browser using an SSL
connection.
4
After confirming that SSL connection is
possible, set the SSL function to [Enable].
Tip
If the SSL connection fails while checking the
connection, you can select [Enable (Allow HTTP
connection for some clients)] to connect using an HTTP
connection. Check the settings on the [SSL] tab using an
HTTP connection, and then check the SSL connection
again.
[Certificate Options]
Select the certificate installation mode.
[Use an external certificate]: This mode uses a
certificate (including private key information)
issued by a CA. PKCS#12 and PEM certificate
formats are supported.
[Use a self-signed certificate (For test use)]: This
mode uses a certificate and private key pair
generated as described in "To generate a self-signed
certificate" (page 16). The private key information
corresponding to the certificate is stored within the
unit.
You do not need to install an external certificate, but
validating its existence, which is one of the SSL
functions, is not possible for the following reasons.
• Self-signing uses the private key generated in the
unit.
• A preconfigured value is set for the Distinguished
Name (Common Name, and so on).
• The certificate is not issued by a CA trusted by the
customer's system.
For reasons of security, we recommend using this
certificate only when there is no problem and a lack
of total security is not a concern, such as for testing.
Notes
• When [Use a self-signed certificate (For test use)] is
selected, a security alert appears when initiating an
SSL connection with a web browser.
• SSL connection may not be possible depending on the
type of certificate installed in the unit.
15
Hide quick links:
Advertisement
Table of Contents
