Configuration Settings - HP Jetdirect J7974E Administrator's Manual

For most 802.1X networks, the infrastructure components (such as LAN switches) must use 802.1X
protocols to control a port's access to the network. If these ports do not allow partial or guest access,
the print server may need to be configured with your 802.1X parameters prior to connection.
To configure initial 802.1X settings before connecting to your network, you can use an isolated LAN, or
a direct computer connection using a cross-over cable.
The supported 802.1X authentication protocols and associated configuration depend on the print server
model and firmware version. Available configuration settings are listed in
Configuration
Table 4-17 802.1X Configuration Settings
Item
Enable Protocols
User Name
Password, Confirm Password
Server ID
Encryption Strength
Jetdirect Ceritificate
CA Certificate
Authentication Behavior:
Reauthenticate on Apply
ENWW
Settings.
Description
Enable (check) the supported protocols used for 802.1X authentication on your network.
●
PEAP: (Protected Extensible Authentication Protocol). PEAP uses digital certificates
for network server authentication and passwords for client authentication. PEAP
requires an EAP User Name, EAP Password, and CA Certificate. Dynamic encryption
keys are also used.
●
EAP-TLS: (Extensible Authentication Protocol using Transport Layer Security, RFC
2716). EAP-TLS is a mutual authentication protocol based on digital certificates for
authentication of both the client and the network authentication server. EAP-TLS
requires an EAP User Name, Jetdirect certificate and CA certificate. Dynamic
encryption keys are also used.
Specify an EAP/802.1X user name (up to 128 characters maximum) for this device. The
default user name is the default host name of the print server, NPIxxxxxx, where xxxxxx
are the last six digits of the LAN hardware (MAC) address.
Specify an EAP/802.1X password (up to 128 characters maximum) for this device. Enter
the password again in the Confirm Password field to ensure it was properly entered.
Specify the Server ID validation string that identifies and validates the authentication
server. The Server ID string is specified on the digital certificate issued by a trusted
Certificate Authority (CA) for the authentication server. The entry may be a partial string
(right-most characters) )unless the Require Exact Match checkbox is enabled.
Specify the minimum encryption strength that can be used during communications with
the authentication server. You may select Low, Medium, or High encryption strength. For
each encryption strength, ciphers are specified to identify the weakest cipher allowed.
The Jetdirect certificate is used to validate the identity of the Jetdirect device to clients and
to network authentication servers. A self-signed Jetdirect certificate is pre-installed. To
install a replacement, click Configure.
To validate the authentication server's identity, the authentication server's certificate or a
CA (or "Root") certificate must be installed on the print server. This CA certificate must be
issued by the Certificate Authority who signed the authentication server's certificate.
To configure or install a CA certificate, click Configure.
Enable (check) or disable (clear) this checkbox to control authentication when you click
Apply on this page, assuming valid configuration entries have been made.
If disabled (default), the print server will not attempt reauthentication unless configuration
changes cause the print server to disconnect and reconnect to the network.
NOTE This parameter does not apply to security or other configuration wizards.
Changes to parameters through a wizard will always cause the print server to
reauthenticate.
Table 4-17 802.1X
Networking Tab 91