Security and Network Setup
The network client and the web server (printing system)
decide which protocol to use for data transfer and
The encryption level can be either secure or normal. Normal
security in the SSL/TLS tab means that the user can access
IPP or HTTP via http or https. For Normal security port 80,
port 443, and port 631 are enabled. For Secure
communication both IPP and HTPP can only be accessed
through a secure (443) port, or via https.
SSL/TLS cannot be enabled unless a digital certificate has
been installed on the system, using the Add Certificate
button. Installing a digital certificate can only be done by
someone with administrator privileges.
The administrator selects SSL/TLS from the [Setup] Menu
and clicks on the [Add Certificate] button. This invokes the
Add Certificate wizard. There are two options regarding
digital certificates. One option is Self-signed certificate. This
is selected when no third party Certificate Authority is being
Another option is Signed Certificate from a Certificate
Authority. In this case, the administrator needs to supply the
fully qualified domain name, IP address, organization and
country of the Certificate Authority.
If the choice is to use a Certificate Authority, all Certificate
information needs to be held in a file and sent to the
Certificate Authority. The Authority returns a valid certificate
that must be installed on the system.
NOTE: A self-signed certificate is not as secure as a
certificate signed by a Certificate Authority. A self-signed
certificate is the most convenient way to begin using SSL/
TLS and does not require the use of a server functioning as a
Certificate Authority or a third party Certificate Authority.
Once the Digital Certificate has been installed, the Enable
SSL/TLS selection becomes available among the [Setup]
options. At that time the administrator can select the mode of
operation, Normal or Secure, from a drop-down menu.