HP Web Jetadmin Software Manuale Utente Scaricare il pdf (Pagina 2)

OVERVIEW

Protecting IT environments against loss or harm is crucial in today’s data and system-driven world.

HP Web Jetadmin provides tools and features that work in tandem with your device fleet to bring you

superior security management. HP Web Jetadmin has a robust set of features that provide the

following:

• Protection against the unauthorized use of HP Web Jetadmin

• Role-based administration using Microsoft

account management

• Feature enablement tied to an account login

• Control over device-based security features for both individual devices and batches of devices

This document discusses security details for HP Web Jetadmin in two sections—application security

and device security. Note that this document does not cover all the aspects of device and application

security that should be considered when managing devices or implementing software applications.

To meet the needs for higher levels of imaging and printing security, HP implemented a Storage Erase

feature that meets the U.S. Department of Defense 5220-22.M requirements for clearing storage

media when the administrator selects certain options and uses supported devices.

APPLICATION SECURITY

HP Web Jetadmin has the following features that make it easy to secure the application and its

features:

• Single sign-on—Users do not have to provide password and user details to access the

application.

• .NET Remoting—The client displays through a local application that uses Microsoft .NET Remoting

as a secure means of communicating with the server.

• Active Directory (AD) integration—Domain accounts are used to identify who has access to the

application and its features.

• Low-privilege service—HP Web Jetadmin does not run as a system and has no direct access to

key OS components. The client application runs under user credentials.

• Secure online downloads—The HP Web Jetadmin installer and update files obtained from hp.com

are digitally signed. This helps to ensure the integrity and authenticity of the files and underlying

components as they are installed.

• Optional SSL/TLS—The ClickOnce client deployment can apply added security with certificates.

Roles and users

HP Web Jetadmin is a single sign-on application. A username and password are not always required

if the user’s Windows

user account has been granted access to an HP Web Jetadmin role.

The

administrator can create roles that define the feature access to the client and enable and disable

features for various user levels.

For HP Web Jetadmin to validate AD user accounts, the HP Web Jetadmin host system must be joined to the AD domain.

The HP Web Jetadmin service runs under NT AUTHORITY\Network Service, a local, built-in account on the server that hosts the application. By

using this account, the HP Web Jetadmin service runs as a low-privilege service. HP does not support and strongly discourages changing the

account that the HP Web Jetadmin service uses. Be aware that NT AUTHORITY\Network Service should have default access rights to its

ServiceProfiles\Network directory (typically C:\Windows\ServiceProfiles\NetworkService\AppData\Local\HP Inc\HPWebJetadmin). During

installation, HP Web Jetadmin also sets Read, Execute, and List permissions on the HP Web Jetadmin directory (usually in C:\Program Files\HP

Inc) for the user NT AUTHORITY\Network Service. Finally, the Microsoft SQL Server instance that either the HP Web Jetadmin installer or the end

user creates should log on as NT AUTHORITY\Network Service.

For more information, including scenarios in which single sign-on is not the active log-in mechanism, see “User/role assignment” on page 3.

1 2 3 4 5 6 7 ... 18 19

Commenti su questo manuale

Nessun commento

HP Web Jetadmin Software Manuale Utente Pagina 2

Commenti su questo manuale

Prodotti e manuali riguardandi no HP Web Jetadmin Software