Network Security
Device Management > Configuration > Security >
Network Security
Configure settings for the network security level.
Note
- Settings configured here relate to the following interfaces:
Ethernet and wireless LAN. - Settings on this page can be changed by the following administrator:
- Network Administrator
Security Level
Select a security level in the list.
Available values for the following items vary depending on the security level selected.
Change the settings as required.
TCP/IP
Configure security settings related to TCP/IP. There are options for IPv4 and IPv6 respectively. Select options according to the network protocol you are using.
TCP/IP
Set IPv4 or IPv6 as the TCP/IP network layer protocol to Active or Inactive.
Note
- The protocols currently in use appear as Active but cannot be changed.
HTTP - Port 80
Select to open or close Port 80 used for HTTP communication.
Note
- This setting corresponds to Port 80 under IPP. When you select Close here, Port 80 under IPP is also changed to Close.
IPP - Port 80, Port 631
Select to open or close Ports 80 and 631 used for IPP printing.
Note
- Port 80 under IPP corresponds to Port 80 under HTTP. If you select Close here, Port 80 under HTTP is also changed to Close.
SSL/TLS - Port 443
Select to open or close Port 443 used for SSL/TLS encrypted communication.
Note
- To enable SSL/TLS encrypted communication via Web browser, select Open.
SSL/TLS - Permit SSL/TLS Communication
If Port 443 is set to Open, select an encrypted communication mode.
Note
- The Ciphertext Only option is not available when the status indicated for Certificate Status is None or Requesting.
Ciphertext Only
Permits encrypted communications only.
Prohibits communication via Web browser if encryption is unavailable.
Ciphertext Priority
Encrypts and transmits data when encryption is available.
If encryption is unavailable, permits transmission of unencrypted data.
Ciphertext/Cleartext
Determines whether to perform encrypted communication depending on the protocol specified when the Web browser is connected to the device.
When the Web browser is connected to the device via "https://device IP address", encrypts and transmits data if encryption is available;
otherwise (i.e. if encryption is unavailable) prohibits communication via the Web browser.
When the Web browser is connected via "http://device IP address", transmits data without encryption.
SSL/TLS - Certificate Status
Displays whether the device certificate required for SSL/TLS encrypted communication is installed.
None
A device certificate is not installed.
Requesting
A request for a device certificate has been submitted to a Certification Authority (CA).
Installed
A device certificate is installed.
Installed/Requesting
A device certificate is already installed, and a new request for a device certificate has been submitted to a Certification Authority (CA).
SSL/TLS Version
Specify the version of SSL/TLS that you want to use.
Note
- If the SSL/TLS Version settings are all set to Inactive when SSL/TLS (IPv4 and/or IPv6) is enabled, SSL/TLS communication will fail.
Encryption Strength Setting
Select the key lengths of the encryption algorithms to use for SSL/TLS communication.
Note
- Depending on the settings for SSL/TLS Version, available settings may vary.
- If your Web browser does not support all of the selected encryption key lengths, you will not be able to access the machine using that browser. Check the specification of your Web browser.
- SSL/TLS communication will fail if you do not select at least one encryption key length when SSL/TLS (IPv4 and/or IPv6) is enabled.
DIPRINT, LPR, FTP, sftp, ssh, RSH/RCP, TELNET, Bonjour, SSDP, SMB, NetBIOS over TCP/IPv4, WSD (Device), WSD (Printer), WSD (Scanner), IPDS, RHPP
Set each protocol or service to active or inactive.
NetWare
Note
- This setting appears only when a NetWare module (standard or optional) is installed.
NetWare
Select whether NetWare is active or inactive.
SNMP
SNMP
Select whether SNMP is active or inactive.
Permit Settings by SNMPv1 and v2
Select whether to permit SNMP v1/v2 to change access privileges for increased communication security.
SNMPv1,v2 Function
Select whether SNMP v1/v2 is active or inactive.
SNMPv3 Function
Select whether SNMP v3 is active or inactive.
Permit SNMPv3 Communication
Select an encryption mode for SNMP v3 communications.
Note
- To transmit encrypted data, an encryption password must be assigned to every account permitted to access the device via SNMP v3.
Encryption Only
Permits encrypted communications only.
If encryption is unavailable, prohibits SNMP v3 communication.
Encryption/Cleartext
Encrypts and transmits data when encryption is available.
If encryption is unavailable, permits transmission of unencrypted data.
TCP/IP Encryption Strength Setting
Confirm the encryption settings used for the TCP/IP protocol.
@Remote
Displays the key length for the certificate used for @Remote.
ssh
Select the encryption algorithm type for ssh communication.
IPsec
Displays whether IPsec is active or inactive.
Wireless LAN
Displays whether Wireless LAN is active or inactive.
If it is active, the encryption method of the communication is displayed.
IEEE 802.1X (Wireless)/IEEE 802.1X (Wired)
Displays whether the IEEE 802.1X authentication is active or inactive.
If it is active, the authentication method is displayed.
S/MIME
Configure the settings for S/MIME.
Encryption Algorithm
Select the common key encryption algorithm for S/MIME encryption.
Digest Algorithm
Select the message digest type used for S/MIME signatures.
SNMPv3
Configure the settings related to SNMPv3.
Authentication Algorithm
Select an authentication algorithm for SNMPv3.
Encryption Algorithm
Select the encryption algorithm type for SNMPv3.
Kerberos Authentication
Select the encryption algorithm type used for Kerberos Authentication.
Driver Encryption Key
Select the key length of the user authentication password transmitted from printer, LAN-Fax, and TWAIN drivers, or of the password set for the print document transmitted from the printer driver.
Buttons
Refresh
Click to update the currently displayed information.
Note
- Before making the settings, click Refresh to obtain the machine's current status.
OK
Click to apply the settings.
Cancel
Click to cancel the settings.