Epson WorkForce Pro WF-4630, WorkForce Pro WF-4640, WorkForce WF-3620, WorkForce WF-3640, WorkForce WF-7610 Administrator's Guide

...
Administrator's Guide

Contents

Administrator's Guide................................................................................................................................. 7
Using Web Config Network Configuration Software ................................................................................ 8
About Web Config ................................................................................................................................ 8
Accessing Web Config ......................................................................................................................... 8
Restricting Features Available for Users .............................................................................................. 9
User Feature Restriction................................................................................................................ 10
Changing the Administrator Password in Web Config ................................................................... 12
Using Your Product on a Secure Network .......................................................................................... 13
Configuring SSL/TLS Communication........................................................................................... 13
Configuring SSL/TLS Settings .................................................................................................. 13
Configuring a Server Certificate for the Product........................................................................ 14
Configuring IPsec/IP Filtering ........................................................................................................ 15
About IPsec/IP Filtering ............................................................................................................ 16
Configuring Default IPsec/IP Filtering Policy............................................................................. 16
Configuring Group IPsec/IP Filtering Policies ........................................................................... 17
IPsec/IP Filtering Policy Settings .............................................................................................. 18
IPsec/IP Filtering Configuration Examples................................................................................ 22
Configuring an IPsec/IP Filtering Certificate ............................................................................. 23
Configuring SNMPv3 Protocol Settings......................................................................................... 24
SNMPv3 Settings...................................................................................................................... 25
Connecting the Product to an IEEE802.1X Network...................................................................... 26
Configuring an IEEE802.1X Network........................................................................................ 26
IEEE802.1X Network Settings .................................................................................................. 27
Configuring a Certificate for an IEEE802.1X Network ............................................................... 28
IEEE802.1X Network Status ..................................................................................................... 29
Using a Digital Certificate .............................................................................................................. 30
About Digital Certification.......................................................................................................... 30
Obtaining and Importing a CA-signed Certificate ...................................................................... 31
CSR Setup Settings .................................................................................................................. 33
3
CSR Import Settings ................................................................................................................. 33
Deleting a CA-signed Certificate............................................................................................... 34
Updating a Self-signed Certificate............................................................................................. 34
Using an LDAP Server................................................................................................................... 35
Configuring the LDAP Server and Selecting Search Settings ................................................... 35
LDAP Server Settings ............................................................................................................... 37
LDAP Search Settings .............................................................................................................. 38
Checking the LDAP Server Connection .................................................................................... 38
LDAP Connection Report Messages ........................................................................................ 39
Using an Email Server................................................................................................................... 39
Configuring an Email Server ..................................................................................................... 40
Email Server Settings ............................................................................................................... 40
Checking the Email Server Connection .................................................................................... 41
Email Server Connection Report Messages ............................................................................. 41
Configuring Email Notification................................................................................................... 42
Using EpsonNet Config Network Configuration Software ..................................................................... 44
Installing EpsonNet Config................................................................................................................. 44
Configuring a Product IP Address Using EpsonNet Config - Ethernet................................................ 44
Configuring a Product IP Address Using EpsonNet Config - WiFi ...................................................... 45
Solving Problems ...................................................................................................................................... 48
Solving Network Software Usage Problems....................................................................................... 48
Cannot Find Access Web Config................................................................................................... 48
The "Out of Date" Message Appears............................................................................................. 49
"The name of the security certificate does not match" Message Appears ..................................... 49
Model Name or IP Address Not Displayed in EpsonNet Config ..................................................... 49
Solving Network Security Problems ................................................................................................... 49
Pre-Shared Key was Forgotten ..................................................................................................... 50
Cannot Communicate with the Product Using IPsec Communication ........................................... 50
Communication was Working, but Stopped................................................................................... 50
Cannot Create the Secure IPP Printing Port.................................................................................. 51
Cannot Access the Product After Configuring IEEE802.1X ........................................................... 51
Solving Digital Certificate Problems ................................................................................................... 51
Digital Certificate Warning Messages............................................................................................ 51
4
Cannot Import a Digital Certificate................................................................................................. 53
Cannot Update a Certificate or Create a CSR ............................................................................... 53
Deleted a CA-signed Certificate .................................................................................................... 53
Where to Get Help.............................................................................................................................. 54
Notices ....................................................................................................................................................... 55
Trademarks........................................................................................................................................ 55
Copyright Notice................................................................................................................................. 55
Copyright Attribution...................................................................................................................... 56
5

Administrator's Guide

Welcome to the Administrator's Guide.
For a printable PDF copy of this guide, click here.
Note: Not all features mentioned in this Administrator's Guide are available with every product model.
7

Using Web Config Network Configuration Software

Follow the instructions in these sections to configure your product's adminstrator network settings using the Web Config software.
Note: Before you can configure system administration settings, connect the product to a network. See the product's Start Here sheet and User's Guide for instructions.
About Web Config Accessing Web Config Restricting Features Available for Users Using Your Product on a Secure Network

About Web Config

Web Config is a browser-based application you can use to configure a product's settings. Basic and advanced setting pages are available.
Note: Before you can configure system administration settings, connect the product to a network. See the product's Start Here sheet and User's Guide for instructions.
You can lock the settings you select by setting up an administrator password for your product. See the product's User's Guide for instructions.
Parent topic: Using Web Config Network Configuration Software

Accessing Web Config

You can access Web Config from your browser using HTTP or HTTPS.
By default, you access Web Config for the first time using HTTP. If you continue to use HTTP, Web Config does not display all available menus.
1. Print a network status sheet for your product and identify the product IP address. See the product's User's Guide for instructions.
2. Start your web browser and make sure JavaScript is enabled.
3. Type the product IP address into the browser as follows, depending on the protocol you are using:
• IPv4: http://product IP address
8
• IPv6: http://[product IP address]/
The Basic Settings page appears:
4. To use HTTPS, configure the address to use HTTPS in your browser.
A message warning about the self-signed certificate appears.
To access Web Config after configuring the address to use HTTPS, enter https:// before the product IP address, shown in step 3.
Note: If the product name is registered with the DNS server, you can use the product name instead of the product IP address to access Web Config.
Parent topic: Using Web Config Network Configuration Software

Restricting Features Available for Users

Follow the instructions in these sections to restrict users from using certain product features and create an administrator password to lock the restrictions using the Web Config software.
User Feature Restriction Configuring User Feature Restrictions Changing the Administrator Password in Web Config
Parent topic: Using Web Config Network Configuration Software
9

User Feature Restriction

You can restrict available product features for up to 10 individual users, with different features available to each user. This requires users to log into the product control panel with their user name and password before they can use control panel features.
With Windows, you can also restrict printing and scanning from the product software. This requires users to log into the printing or scanning software, and allows the software to authenticate the users before printing or scanning proceeds. For instructions on setting up software restrictions, see the help utility in the printing or scanning software.
Parent topic: Restricting Features Available for Users

Configuring User Feature Restrictions

You can create up to 10 user accounts and restrict access to control panel features separately for each one.
1. Access Web Config, select Access Control Settings, and select Basic.
You see a window like this:
2. Select the Enables Access Controls checkbox.
3. If you have configured the product for an LDAP server or IEEE802.1x network, you can deselect the Allows printing and scanning without authentication information checkbox to prevent the product from receiving jobs sent from these sources:
• The default operating system driver
• A PCL or PostScript printer driver
10
• Web services such as Epson Connect or Google Cloud Print
• Smartphones and other mobile devices
4. Click OK.
5. Select Access Control Settings and select User Settings.
6. Click Add.
You see a window like this:
7. Enter a name for a user in the User Name field following the guidelines on the screen. Use ASCII (0x20-0x7E) characters.
8. Enter a password for the user in the Password field following the guidelines on the screen.
Note: If you need to reset a password, leave the password field blank.
9. Select the checkbox for each function you want the user to be able to perform, and deselect the checkbox for each function you want to restrict access to.
10. Click Apply.
Note: When you edit a completed user account, you see a Delete option. Click it to delete a user, if necessary.
Note: You can import and export a list of user features using EpsonNet Config. See the help utility in the software for instructions.
11
Parent topic: Restricting Features Available for Users

Changing the Administrator Password in Web Config

You can set an administrator password using your product's control panel or using Web Config or EpsonNet Config. You use the same administrator password in all cases.
Note: See your product's User's Guide for instructions on setting an administrator password using the control panel. If you forget your administrator password, contact Epson for support, as described in the product's User's Guide.
1. Access Web Config, select Administrator Settings, and select Change Administrator Password.
You see a window like this:
2. Do one of the following:
• If you have set an administrator password before, enter the current password, then enter and
confirm the new password in the fields provided.
• If you have not set an administrator password before, enter a new password and confirm it in the
fields provided
3. Click OK
Parent topic: Restricting Features Available for Users
12

Using Your Product on a Secure Network

Follow the instructions in these sections to configure security features for your product on the network using the Web Config software.
Configuring SSL/TLS Communication Configuring IPsec/IP Filtering Configuring SNMPv3 Protocol Settings Connecting the Product to an IEEE802.1X Network Using a Digital Certificate Using an LDAP Server Using an Email Server
Parent topic: Using Web Config Network Configuration Software

Configuring SSL/TLS Communication

Follow the instructions in these sections to configure SSL/TLS communication using Web Config.
Configuring SSL/TLS Settings Configuring a Server Certificate for the Product
Parent topic: Using Your Product on a Secure Network
Configuring SSL/TLS Settings
If your product supports HTTPS, you can configure SSL/TLS to encrypt communications with your product.
1. Access Web Config and select Network Security Settings.
2. Select SSL/TLS and select Basic.
13
You see a window like this:
3. Select one of the following options for the Encryption Strength setting:
High for AES256/3DES
Middle for AES256/3DES/AES128/RC4
4. Select Enable or Disable for the Redirect HTTP to HTTPS setting as necessary.
5. Click Next.
You see a confirmation message.
6. Click OK.
Parent topic: Configuring SSL/TLS Communication
Configuring a Server Certificate for the Product
You can configure a server certificate for your product.
1. Access Web Config and select Network Security Settings.
2. Select SSL/TLS and select Certificate.
14
You see a window like this:
3. Select one of the following options for the Server Certificate setting:
Self-signed Certificate: select if you have not obtained a CA-signed certificate and want the
product to generate a self-signed certificate
CA-signed Certificate: select if you have obtained a CA-signed certificate
4. Click Next.
You see a confirmation message.
5. Click OK.
Parent topic: Configuring SSL/TLS Communication

Configuring IPsec/IP Filtering

Follow the instructions in these sections to configure IPsec/IP traffic filtering using Web Config.
About IPsec/IP Filtering Configuring Default IPsec/IP Filtering Policy Configuring Group IPsec/IP Filtering Policies IPsec/IP Filtering Policy Settings IPsec/IP Filtering Configuration Examples Configuring an IPsec/IP Filtering Certificate
Parent topic: Using Your Product on a Secure Network
15
About IPsec/IP Filtering
You can filter traffic to the product over the network based on IP address, service, and port by configuring a default policy that applies to every user or group connecting to the product. For control of individual users or user groups, you can configure group policies.
Note: IPsec is supported only by computers running Windows Vista or later, or Windows Server 2008 or later.
Parent topic: Configuring IPsec/IP Filtering
Configuring Default IPsec/IP Filtering Policy
You can configure the default policy for IPsec/IP traffic filtering using Web Config.
1. Access Web Config and select Network Security Settings.
2. Select IPsec/IP Filtering and select Basic.
You see a window like this:
3. Select Enable to enable IPsec/IP filtering.
4. Select the filtering options you want to use for the default policy.
5. Click Next.
You see a confirmation message.
6. Click OK.
Parent topic: Configuring IPsec/IP Filtering
16
Configuring Group IPsec/IP Filtering Policies
You can configure group policies for IPsec/IP traffic filtering using Web Config.
1. Access Web Config and select Network Security Settings.
2. Select IPsec/IP Filtering and select Basic.
3. Click a tab number for the policy number you want to configure.
You see a window like this:
4. Select the Enable this Group Policy checkbox.
5. Select the filtering options you want to use for this group policy.
6. Click Next.
You see a confirmation message.
7. Click OK.
8. If you want to configure additional group policies, click the next tab number and repeat the configuration steps as necessary.
Parent topic: Configuring IPsec/IP Filtering
17
Loading...
+ 39 hidden pages