Configure Certificates - HP 630n - JetDirect Gigabit EN Print Server Administrator's Manual

NOTE: While self-signed certificates are permitted and allow data encryption, they do not ensure valid
authentication. A self-signed certificate is similar to validating your own identity.
The Certificates page provides the status of the certificates installed on the HP Jetdirect print server:
●
Jetdirect Certificate Used to validate the identity of the HP Jetdirect device to clients and to
network authentication servers.
By factory default, a self-signed HP Jetdirect certificate is pre-installed, which allows the embedded
Web server to use HTTPS and appear as a secure site when accessed by a Web browser.
Click View to view the contents of an installed HP Jetdirect certificate, or click Configure to update
or install a new one. For more information, see
When installed, an HP Jetdirect certificate is saved after a cold-reset, which is used to restore the
print server to factory-default values.
●
CA Certificate. (Full-featured print servers only) A certificate from a trusted third party, or
certificate authority (CA), is used to validate the identity of a network authentication server during
802.1X authentication methods that use EAP. The authentication server's identity is validated when
information on the CA certificate matches the information on a certificate received from the
authentication server.
A CA certificate for the print server is used to sign the authentication server's certificate. Therefore,
the certificate authority for the authentication server's certificate must also be used for the CA
certificate.
Click View to view the contents of an installed HP Jetdirect certificate, or click Configure to update
or install a new one. For more information, see
A CA certificate is not saved when the print server is reset to factory-default values.

Configure certificates

To update or install a certificate, click Configure to start the certificate management wizard. The screens
displayed depend on the type of certificate (HP Jetdirect or CA) and your selections.
Certificate configuration screens on page 88
parameters that are displayed.
NOTE: If you improperly exit Certificates configuration by failing to use the Cancel button, for example,
an Operation Failed screen appears. If this occurs, wait approximately two minutes and restart the
wizard.
Table 4-17 Certificate configuration screens
Certificate Options screen. The options displayed depend on your print server model.
●
88 Chapter 4 Embedded Web server (V.38.xx)
Update Pre-Installed Certificate Update the pre-installed, self-signed certificate. The certificate is
overwritten. You can update the following item:
Certificate Validity Period
The browser identifies the certificate as self-signed for each new Web session, which can cause a security
alert message. You can bypass this message by adding the certificate to the browser's certificate store or by
disabling browser alerts (not recommended).
Self-signed certificates are not necessarily secure because the certificate owner is merely confirming his own
identity instead of verification by a trusted third party. Certificates from a trusted third party are considered
more secure.
Configure certificates on page
Configure certificates on page
provides a description of the screens and configuration
88.
88.
Table 4-17
ENWW