• If you set "Permit SSL/TLS Communication" to [Ciphertext Only], enter " https://(the machine's IP
address or host name)/" to access the machine.
•
The TLS version is 1.0.
• If you set "Permit SSL/TLS Communication" to [Ciphertext Only], communication will not be
possible if you select a protocol that does not support a Web browser, or specify an encryption
strength setting only. If this is the case, enable communication by setting [Permit SSL / TLS
Communication] to [Ciphertext / Cleartext] using the machine's control panel, and then specify the
correct protocol and encryption strength.
• The SSL/TLS version and encryption strength settings can be changed, even under [Network
Security].
• Depending on the states you specify for "SSL2.0", "SSL3.0", and "TLS", the machine might not be
able to connect to an external LDAP server.
• The following types of communication and data are always encrypted by SSL3.0: communication
via @Remote, Integration Server authentication, files sent via a delivery server, and logs transferred
to Remote Communication Gate S.
User Settings for SSL (Secure Sockets Layer)
We recommend that after installing the self-signed certificate or device certificate from a private
certificate authority on the main unit and enabling SSL (communication encryption), you instruct users to
install the certificate on their computers. Installation of the certificate is especially necessary for users
who want to print via IPP-SSL from Windows Vista/7, Windows Server 2008/2008 R2. The network
administrator must instruct each user to install the certificate.
• Take the appropriate steps when you receive a user's inquiry concerning problems such as an
expired certificate.
•
For details about how to install the certificate and about where to store the certificate when
accessing the machine using IPP, see Web Image Monitor Help.
• If a certificate issued by a certificate authority is installed in the machine, confirm the certificate
store location with the certificate authority.
• Printing via the standard IPP port under Windows Vista/7, Windows Server 2008/2008 R2 is
possible only after the hostname or IP address is specified in the device certificate's [Common
Name] setting. If the host name or IP address has changed, the user must delete the printer installed
on the client computer. The printer must be reinstalled if the client computer's device certificate has
been updated. Also, if a user's authentication information (login user name and password) has
changed, the printer must be deleted, then the user's information settings must be updated, and
then the printer must be reinstalled.
Protection Using Encryption
225
To Next Page
Loading...
