HP JetAdvantage Security Manager 10 Device E-LTU Instrukcja Użytkownika Pobierz pdf (Strona 5)

CA CERTIFICATES

HP Jetdirect can store an Identity certificate and a CA (Certificate Authority) certificate. The CA

certificate tells Jetdirect which identity certificates should be trusted (i.e. must be signed by that CA)

when Jetdirect is receiving a certificate from another entity. Jetdirect’s identity certificate is the

certificate that is sent out when another entity requests it. It is important to note that the CA certificate

on Jetdirect is configured strictly to provide the trust point for identity certificates that are sent to

Jetdirect – the identity certificates received from other entities must be signed by that CA or be part of

a chain which ends in that CA. Think of the CA certificate as the self-signed certificate of the

certificate authority. Once this CA certificate is installed, any identity certificates signed by that

certificate authority can be trusted.

CERTIFICATE AUTHORITIES (CA)

When browsing to various online shopping web sites, the reason those sites can be trusted is that the

browser includes CA certificates for those sites from well-known certificate authorities such as

Verisign.

There is usually a difference between Internet trust using certificates and Intranet trust using

certificates. Internet trust involves well-known certificate authorities such as Verisign and Entrust.

However, Intranet models usually revolve around Microsoft’s Certificate Authority that comes with

Windows 2003 server and beyond. Each company establishes their own Public Key Infrastructure

(PKI) that includes an entire policy around certificates.

When creating

a certificate

request from

either the

embedded web

server (EWS) of

a device or

Security

Manager, the

request is

submitted to a

Certificate

Authority and a

certificate is

returned. Only Microsoft Certificate Authorities and Symantec are supported by Security Manager.

For Microsoft Certificate Authorities, machine to machine access needs to be provided between

Security Manager and the Certificate Authority with rights to submit requests. Both Enterprise and

Standalone Microsoft Certificate Authority types are supported. Enterprise requires the Active

1 2 3 4 5 6 7 8 9 10 ... 30 31

Brak uwag

HP JetAdvantage Security Manager 10 Device E-LTU Instrukcja Użytkownika Strona 5