Network Security

Configure settings for the network security level.

Note

Settings configured here relate to the following interfaces:
Ethernet and wireless LAN.
Settings on this page can be changed by the following administrator:
- Network Administrator
Some items may not appear depending on machine type or configuration.

Security Level

Select a security level in the list.
Available values for the following items vary depending on the security level selected. Change the settings as required.

TCP/IP

Configure security settings related to TCP/IP. There are options for IPv4 and IPv6 respectively. Select options according to the network protocol you are using.

TCP/IP

Set IPv4 or IPv6 as the TCP/IP network layer protocol to Active or Inactive.

Note

The protocols currently in use appear as Active but cannot be changed.

HTTP - Port 80

Select to open or close Port 80 used for HTTP communication.

Note

This setting corresponds to Port 80 under IPP. When you select Close here, Port 80 under IPP is also changed to Close.

IPP - Port 80, Port 631

Select to open or close Ports 80 and 631 used for IPP printing.

Note

Port 80 under IPP corresponds to Port 80 under HTTP. If you select Close here, Port 80 under HTTP is also changed to Close.

SSL/TLS - Port 443

Select to open or close Port 443 used for SSL/TLS encrypted communication.

Note

To enable SSL/TLS encrypted communication via Web browser, select Open.

SSL/TLS - Permit SSL/TLS Communication

If Port 443 is set to Open, select an encrypted communication mode.

Note

The Ciphertext Only option is not available when the status indicated for Certificate Status is None or Requesting.

Ciphertext Priority

Encrypts and transmits data when encryption is available.
If encryption is unavailable, permits transmission of unencrypted data.

Ciphertext/Cleartext

Determines whether to perform encrypted communication depending on the protocol specified when the Web browser is connected to the device.
When the Web browser is connected to the device via "https://device IP address", encrypts and transmits data if encryption is available; otherwise (i.e. if encryption is unavailable) prohibits communication via the Web browser.
When the Web browser is connected via "http://device IP address", transmits data without encryption.

Ciphertext Only

Permits encrypted communications only.
Prohibits communication via Web browser if encryption is unavailable.

SSL/TLS - Certificate Status

Displays whether the device certificate required for SSL/TLS encrypted communication is installed.

None

A device certificate is not installed.

Requesting

A request for a device certificate has been submitted to a Certification Authority (CA).

Installed

A device certificate is installed.

Installed/Requesting

A device certificate is already installed, and a new request for a device certificate has been submitted to a Certification Authority (CA).

SSL/TLS Version

Specify the version of SSL/TLS that you want to use.

Note

If the SSL/TLS Version settings are all set to Inactive when SSL/TLS (IPv4 and/or IPv6) is enabled, SSL/TLS communication will fail.

Encryption Strength Setting

Select the key lengths of the encryption algorithms to use for SSL/TLS communication.

Note

Depending on the settings for SSL/TLS Version, available settings may vary.
If your Web browser does not support all of the selected encryption key lengths, you will not be able to access the machine using that browser. Check the specification of your Web browser.
SSL/TLS communication will fail if you do not select at least one encryption key length when SSL/TLS (IPv4 and/or IPv6) is enabled.

DIPRINT, LPR, FTP, sftp, ssh, RSH/RCP, TELNET, Bonjour, SSDP, SMB, NetBIOS over TCP/IPv4, WSD (Device), WSD (Printer), WSD (Scanner), IPDS, RHPP

Set each protocol or service to active or inactive.

WSD (Encrypted Communication of Device)

Specify whether to encrypt the communication using the WSD (Web Services on Devices) protocol.

NetWare

Note

This setting appears only when a NetWare module (standard or optional) is installed.

NetWare

Specify whether NetWare is active or inactive.

SNMP

Specify whether SNMP is active or inactive.

Permit Settings by SNMPv1 and v2

Specify whether to permit SNMP v1/v2 to change access privileges for increased communication security.

SNMPv1,v2 Function

Specify whether SNMP v1/v2 is active or inactive.

SNMPv3 Function

Specify whether SNMP v3 is active or inactive.

Permit SNMPv3 Communication

Select an encryption mode for SNMP v3 communications.

Note

To transmit encrypted data, an encryption password must be assigned to every account permitted to access the device via SNMP v3.

Encryption Only

Permits encrypted communications only.
If encryption is unavailable, prohibits SNMP v3 communication.

Encryption/Cleartext

Encrypts and transmits data when encryption is available.
If encryption is unavailable, permits transmission of unencrypted data.

TCP/IP Encryption Strength Setting

Confirm the encryption settings used for the TCP/IP protocol.

@Remote

Displays the key length for the certificate used for @Remote.

ssh

Select the encryption algorithm type for ssh communication.

IPsec

Displays whether IPsec is active or inactive.

Wireless LAN

Displays whether Wireless LAN is active or inactive.
If it is active, the encryption method of the communication is displayed.

IEEE 802.1X (Wireless)/IEEE 802.1X (Wired)

Displays whether the IEEE 802.1X authentication is active or inactive.
If it is active, the authentication method is displayed.

S/MIME

Configure the settings for S/MIME.

Encryption Algorithm

Select the common key encryption algorithm for S/MIME encryption.

Digest Algorithm

Select the message digest type used for S/MIME signatures.

SNMPv3

Configure the settings related to SNMPv3.

Authentication Algorithm

Select an authentication algorithm for SNMPv3.

Encryption Algorithm

Select the encryption algorithm type for SNMPv3.

Kerberos Authentication

Select the encryption algorithm type used for Kerberos Authentication.

Driver Encryption Key

Select the key length of the user authentication password transmitted from printer, LAN-Fax, and TWAIN drivers, or of the password set for the print document transmitted from the printer driver.

Buttons

Refresh

Click to update the currently displayed information.

Note

Before making the settings, click Refresh to obtain the machine's current status.

OK

Click to apply the settings.

Cancel

Click to cancel the settings.

Network Security Device Management > Configuration > Security > Network Security

Security Level

TCP/IP

TCP/IP

HTTP - Port 80

IPP - Port 80, Port 631

SSL/TLS - Port 443

SSL/TLS - Permit SSL/TLS Communication

Ciphertext Priority

Ciphertext/Cleartext

Ciphertext Only

SSL/TLS - Certificate Status

None

Requesting

Installed

Installed/Requesting

SSL/TLS Version

Encryption Strength Setting

DIPRINT, LPR, FTP, sftp, ssh, RSH/RCP, TELNET, Bonjour, SSDP, SMB, NetBIOS over TCP/IPv4, WSD (Device), WSD (Printer), WSD (Scanner), IPDS, RHPP

WSD (Encrypted Communication of Device)

NetWare

NetWare

SNMP

SNMP

Permit Settings by SNMPv1 and v2

SNMPv1,v2 Function

SNMPv3 Function

Permit SNMPv3 Communication

Encryption Only

Encryption/Cleartext

TCP/IP Encryption Strength Setting

@Remote

ssh

IPsec

Wireless LAN

IEEE 802.1X (Wireless)/IEEE 802.1X (Wired)

S/MIME

Encryption Algorithm

Digest Algorithm

SNMPv3

Authentication Algorithm

Encryption Algorithm

Kerberos Authentication

Driver Encryption Key

Buttons

Refresh

OK

Cancel

Network Security
Device Management > Configuration > Security > Network Security