HP Web Jetadmin Software Manuale Utente Scaricare il pdf (Pagina 18)

Enable Secure Sockets Layer (SSL)

HP Web Jetadmin administrators enable SSL by adding a certicate to the HP Web Jetadmin application. This

certicate forces the browser to use the more secure HTTPS protocol when a user accesses the client logon

page. The administrator must enable SSL from the console or host that runs the application by using the

procedure in Congure HTTPS (Server Certicates or SSL) on page 15. When a remote administrator accesses

Tools > Options > Shared > Network > HTTPS, a message appears stating that certicates can only be installed

from an HP Web Jetadmin client that runs on the console or server that hosts HP Web Jetadmin.

In some environments, SSL is required when an HTTP interface or service is used for communication. In these

cases, SSL can be enabled and enforced by HP Web Jetadmin. SSL provides a high level of assurance regarding

the authentication and encryption of HTTP communication. That is, a user who requests access to the

HP Web Jetadmin Smart Client download can be reasonably assured that the system hosting HP Web Jetadmin

is authentic and the communication between the two systems is encrypted so that it cannot be easily read by

eavesdroppers.

The SSL protocol uses certicates to accommodate both authentication and encryption. HP Web Jetadmin can

generate a signing request that can be used by a certicate authority (CA) to generate a certicate. Using Tools >

Options > Shared > Network > HTTPS, the user can generate a Signing Request.

Once the request has been fullled by the CA, the certicate is ready to be installed on HP Web Jetadmin.

Remember, you must be at the application console to use Tools > Options > Shared > Network > HTTPS. Use

Install Certicate to browse and upload the certicate le.

Once the certicate is installed, the HTTP service enforces SSL. Any browser contact with HP Web Jetadmin

should indicate HTTPS on the URL when a certicate is installed. Using Remove Certicate uninstalls the

certicate and SSL is no longer enforced.

Important Points to Remember When Implementing SSL

Client communication with SSL enforced requires one or more of the following considerations.

●

For new server certicates, you must install 2048-bit certicates. Any previously installed 1024-bit server

certicates continue to function correctly.

●

When SSL has been implemented on HP Web Jetadmin with an internal certicate authority (CA), the CA’s

authorizing certicate must be installed in the client browser. If this certicate is not installed in the client

browser the HP Web Jetadmin Smart Client page will fail to load up in SSL mode.

●

Proxy servers tend to use the standard SSL port 443. If the HP Web Jetadmin Smart Client page is being

called through a proxy server, a redirect error may occur. This is due to the URL being redirected to 443

rather than 8443 which is the port used by the HP Web Jetadmin SSL. The workaround for this is to place

the HP Web Jetadmin fully qualied domain name (FQDN) into the browsers exceptions list under Tools >

Internet Options > Connections > LAN Settings > Advanced. This causes the browser to pull HTTP and

HTTPS content directly from the HP Web Jetadmin server.

TIP: HP Web Jetadmin HTTP and HTTPS port numbers can be customized to something other than 8000

and 8443.

●

When you have implemented SSL on HP Web Jetadmin, a redirect occurs when the browser URL uses port

8000. Here is an example:

The known URL prior to SSL implementation is http://servername.domain.xxx:8000.

14 Install and Set Up HP Web Jetadmin ENWW

1 2 ... 13 14 15 16 17 18 19 20 21 22 23 ... 36 37

Commenti su questo manuale

Nessun commento

HP Web Jetadmin Software Manuale Utente Pagina 18

Commenti su questo manuale

Prodotti e manuali riguardandi no HP Web Jetadmin Software