Network User's Guide

ManualsBrandsBrother ManualsPrinterHL-4570CDWT

Table Of Contents

NETWORK

USER’S GUIDE

Multi-Protocol On-board Ethernet Print Server and Wireless

Ethernet Print Server

This Network User's Guide provides useful information of wired

and wireless network settings and security settings using your

Brother machine. You can also find supported protocol

information and detailed troubleshooting tips.

To find basic information about network and advanced network

features of your Brother machine, see the Network Glossary.

To download the latest manual, please visit the Brother Solutions

Center at (http://solutions.brother.com/)

. You can also download

the latest drivers and utilities for your machine, read FAQs and

troubleshooting tips or learn about special printing solutions from

the Brother Solutions Center.

Version 0

ENG

Summary of content (114 pages)

PAGE 1
Multi-Protocol On-board Ethernet Print Server and Wireless Ethernet Print Server NETWORK USER’S GUIDE This Network User's Guide provides useful information of wired and wireless network settings and security settings using your Brother machine. You can also find supported protocol information and detailed troubleshooting tips. To find basic information about network and advanced network features of your Brother machine, see the Network Glossary.
PAGE 2
Definitions of notes We use the following icons throughout this User’s Guide: IMPORTANT IMPORTANT indicates a potentially hazardous situation which, if not avoided, may result in damage to property or loss of product function. Note Notes tell you how you should respond to a situation that may arise or give tips about how the operation works with other features. IMPORTANT NOTE  This product is approved for use in the country of purchase only.
PAGE 3
Table of Contents 1 Introduction 1 Network features........................................................................................................................................1 Other Network features .......................................................................................................................2 2 Changing your machine’s network settings 3 How to change your machine’s network settings (IP address, Subnet mask and Gateway) ...........................................
PAGE 4
Wireless configuration using the Brother installer application (For HL-4570CDW(T)) 26 Before configuring the wireless settings ..................................................................................................26 Configure the wireless settings................................................................................................................26 5 Control panel setup 31 Network menu............................................................................................
PAGE 5
7 Security features 51 Overview..................................................................................................................................................51 Managing your network machine securely using SSL/TLS .....................................................................52 Secure Management using Web Based Management (web browser) ..............................................52 Printing documents securely using SSL/TLS.......................................................
PAGE 6
1 Introduction 1 1 Network features 1 Your Brother machine can be shared on a 10/100 MB wired or IEEE 802.11b/g wireless Ethernet network using the internal network print server. The print server supports various functions and methods of connection depending on the operating system you are running on a network supporting TCP/IP. The following chart shows what network features and connections are supported by each operating system.
PAGE 7
Introduction Other Network features 1 1 Security 1 Your Brother machine employs some of the latest network security and encryption protocols available. (See Security features on page 51.) Secure Function Lock 2.0 1 Secure Function Lock 2.0 increases security by restricting the use of functions. (See Secure Function Lock 2.0 on page 42.
PAGE 8
2 Changing your machine’s network settings 2 How to change your machine’s network settings (IP address, Subnet mask and Gateway) 2 Using the control panel 2 You can configure your machine for a network using the control panel Network menu. (See Control panel setup on page 31.) Using the BRAdmin Light utility 2 The BRAdmin Light utility is designed for initial setup of Brother network connected devices.
PAGE 9
Changing your machine’s network settings Setting the IP address, Subnet Mask and Gateway using BRAdmin Light 2 Note • You can download Brother's latest BRAdmin Light utility from http://solutions.brother.com/. • If you require more advanced machine management, use the latest version of BRAdmin Professional 3 utility that is available as a download from http://solutions.brother.com/. This utility is only available for Windows® users.
PAGE 10
Changing your machine’s network settings c Double-click the unconfigured device. Windows® Macintosh 2 Note • If the print server is set to its factory default settings (if you do not use a DHCP/BOOTP/RARP server), the device will appear as Unconfigured in the BRAdmin Light utility screen. • You can find the Node Name and MAC Address (Ethernet Address) by printing the Network Configuration List.
PAGE 11
Changing your machine’s network settings Other Management Utilities 2 Your Brother machine has the following management utilities other than the BRAdmin Light utility. You can change your network settings using these utilities. 2 Web Based Management (web browser) 2 A standard web browser can be used to change your print server settings using the HTTP (Hyper Text Transfer Protocol). (See How to configure the machine settings using Web Based Management (web browser) on page 40.
PAGE 12
Changing your machine’s network settings Web BRAdmin (Windows®) 2 Web BRAdmin is a utility for managing network connected Brother devices. This utility can search for Brother products on your network, view the status and configure the network settings. Unlike BRAdmin Professional 3, which is designed for Windows® only, Web BRAdmin is a server based utility that can be accessed from any client PC with a web browser that supports JRE (Java Runtime Environment).
PAGE 13
3 Configuring your machine for a wireless network (For HL-4570CDW(T)) 3 Overview 3 To connect your machine to your wireless network, we recommend you to follow the steps in the Quick Setup Guide using WPS or AOSS™ from the control panel menu. By using this method, you can easily connect your machine to your wireless network. Please read this chapter for additional methods on how to configure the wireless network settings.
PAGE 14
Configuring your machine for a wireless network (For HL-4570CDW(T)) Step by step chart for wireless network configuration For Infrastructure mode a 3 Confirm your network environment. See page 11.  Infrastructure mode  Ad-hoc mode Connected to a computer with a WLAN access point/router b 3 or 3 See page 10 Connected to a wireless capable computer without a WLAN access point/router Confirm your wireless network setup method. See page 12.
PAGE 15
Configuring your machine for a wireless network (For HL-4570CDW(T)) For Ad-hoc mode a 3 Confirm your network environment. See page 11.  Ad-hoc mode  Infrastructure mode Connected to a wireless capable computer without a WLAN access point/router b or Connected to a computer with a WLAN access point/router Confirm your wireless network setup method. See page 12.
PAGE 16
Configuring your machine for a wireless network (For HL-4570CDW(T)) Confirm your network environment 3 Connected to a computer with a WLAN access point/router in the network (Infrastructure mode) 3 1 3 4 2 3 1 WLAN access point/Router 1 1 If your computer supports Intel® MWT (My WiFi Technology), you can use your computer as a Wi-Fi Protected Setup supported access point.
PAGE 17
Configuring your machine for a wireless network (For HL-4570CDW(T)) Confirm your wireless network setup method 3 There are four methods to configure your wireless network machine. Use WPS/AOSS™ from the control panel menu (recommended), Setup Wizard from the control panel, the Brother installer application on the CD-ROM or the PIN Method of Wi-Fi Protected Setup. The setup process will be different depending on your network environment.
PAGE 18
Configuring your machine for a wireless network (For HL-4570CDW(T)) Configuration using the Brother installer application on the CD-ROM to configure your machine for a wireless network 3 You can also use the Brother installer application on the CD-ROM we have provided with the machine. You will be guided by the on-screen instructions until you are able to use your Brother wireless network machine. You must know your wireless network settings before you proceed with this installation.
PAGE 19
Configuring your machine for a wireless network (For HL-4570CDW(T)) Configuration temporarily using a USB or network cable 3 You can temporarily use a USB cable or network cable when you configure your Brother machine in this method.  You can remotely configure the machine from a computer that is also on the network using a USB cable (A) 1. 3 A 1 You can configure the wireless settings of the machine using a USB cable temporarily connected to a wired or wireless computer.
PAGE 20
Configuring your machine for a wireless network (For HL-4570CDW(T)) Configuration using the PIN Method of Wi-Fi Protected Setup to configure your machine for a wireless network (Infrastructure mode only) 3 If your WLAN access point/router (A) supports Wi-Fi Protected Setup, you can also configure using the PIN Method of Wi-Fi Protected Setup.  Connection when the WLAN access point/router (A) doubles as a Registrar 1.
PAGE 21
Configuring your machine for a wireless network (For HL-4570CDW(T)) Configuring your machine for a wireless network (For Infrastructure mode and Ad-hoc mode) 3 IMPORTANT • If you are going to connect your Brother machine to your network, we recommend that you contact your system administrator prior to installation. You must know your wireless network settings before you proceed with this installation.
PAGE 22
Configuring your machine for a wireless network (For HL-4570CDW(T)) Configuring your machine when the SSID is not broadcast a 3 Before configuring your machine we recommend you write down your wireless network settings. You will need this information before you continue with the configuration. Check and record the current wireless network settings.
PAGE 23
Configuring your machine for a wireless network (For HL-4570CDW(T)) b Press + or - to choose Network. Press OK. c Press + or - to choose WLAN. Press OK. d Press + or - to choose Setup Wizard. Press OK. e When WLAN Enable? is displayed, press + to accept. This will start the wireless setup wizard. To cancel, press Cancel. f The machine will search for your network and display a list of available SSIDs. Choose using + or -. Press OK. g Enter the SSID name.
PAGE 24
Configuring your machine for a wireless network (For HL-4570CDW(T)) m Enter the WPA key you wrote down in step a and press OK. Go to step n. (For information how to enter text, see the Quick Setup Guide.) n To apply the settings, choose Yes. To cancel, choose No. Do one of the following: If you chose Yes, go to step o. If you chose No, go back to step f. o p The machine starts to connect to the wireless device you have chosen.
PAGE 25
Configuring your machine for a wireless network (For HL-4570CDW(T)) Configuring your machine for an enterprise wireless network a 3 Before configuring your machine we recommend you write down your wireless network settings. You will need this information before you continue with the configuration. Check and record the current wireless network settings.
PAGE 26
Configuring your machine for a wireless network (For HL-4570CDW(T)) Note • If you configure your machine using EAP-TLS Authentication, you must install the Client Certificate before you start configuration. If you have installed more than one certificate, we recommend you write down the certificate name you want to use. For installing the certificate, see Using Certificates for device security on page 60.
PAGE 27
Configuring your machine for a wireless network (For HL-4570CDW(T)) j Choose the Authentication method using + or -, and press OK. Do one of the following: If you chose LEAP, go to step p. If you chose EAP-FAST, go to step k. If you chose PEAP, go to step k. If you chose EAP-TTLS, go to step k. If you chose EAP-TLS, go to step l. k Choose the Inner Authentication method NONE, CHAP, MS-CHAP, MS-CHAPv2, GTC or PAP using + or -, and press OK. Go to step l.
PAGE 28
Configuring your machine for a wireless network (For HL-4570CDW(T)) p Enter the user ID you wrote down in step a. Press OK. (For information how to type text, see the Quick Setup Guide.) Do one of the following: If your Authentication method is EAP-TLS, go to step r. For other Authentication methods, go to step q. q r Enter the Password you wrote down in step a. Press OK. Go to step r. s t 3 To apply the settings, choose Yes. To cancel, choose No.
PAGE 29
Configuring your machine for a wireless network (For HL-4570CDW(T)) Using the PIN Method of Wi-Fi Protected Setup 3 If your WLAN access point/router supports Wi-Fi Protected Setup (PIN Method), you can configure the machine easily. The PIN (Personal Identification Number) Method is one of the connection methods developed by the Wi-Fi Alliance®.
PAGE 30
Configuring your machine for a wireless network (For HL-4570CDW(T)) 1 (Windows Vista®) Click the button and then Network. ® 7) (Windows Click the 2 f button and then Devices and Printers. (Windows Vista®) Click Add a wireless device. (Windows® 7) Click Add a device. 3 Choose your machine and click Next. 4 Input the PIN which the LCD shows in step d and then click Next. 5 Choose your network that you want to connect to, and then click Next. 6 Click Close.
PAGE 31
4 Wireless configuration using the Brother installer application (For HL-4570CDW(T)) Before configuring the wireless settings 4 4 IMPORTANT • The following instructions will install your Brother machine in a network environment using the Brother installer application found on the CD-ROM we have provided with the machine. 4 • You can also setup your Brother machine using WPS or AOSS™ from the control panel which we recommend. You can find instructions in the supplied Quick Setup Guide.
PAGE 32
Wireless configuration using the Brother installer application (For HL-4570CDW(T)) For an enterprise wireless network configuration 4 If you are configuring your machine for an IEEE 802.1x supported wireless network, record your Authentication method, Encryption method, User ID and Password.
PAGE 33
Wireless configuration using the Brother installer application (For HL-4570CDW(T)) Note • If you configure your machine using EAP-TLS Authentication, you must install the Client Certificate before you start configuration. If you have installed more than one certificate, we recommend you write down the certificate name you want to use. For installing the certificate, see Using Certificates for device security on page 60.
PAGE 34
Wireless configuration using the Brother installer application (For HL-4570CDW(T)) (Macintosh) 4 1 The opening screen will appear automatically. Click Start Here OSX. Choose your machine and click Next. 2 Choose Wireless Network Connection and then click Next. c Choose Yes, my Access Point supports WPS or AOSS and I want to use them. or No and then click Next. When you choose No, you have the ability to configure the wireless setting in four different ways.
PAGE 35
Wireless configuration using the Brother installer application (For HL-4570CDW(T)) (Windows® XP SP2) 1 Click Start and then Control Panel. 2 Click the Network and Internet Connections icon. 3 Click the Network Connections icon. 4 Choose and right-click Wireless Network Connection. Click View Available Wireless Networks. 5 You can see the SSID of the wireless printer in the list. Choose SETUP and click Connect. 6 Check the Wireless Network Connection status.
PAGE 36
5 Control panel setup 5 Network menu 5 The Network menu selections of the control panel allow you to set up the Brother machine for your network configuration. (For more information on how to use the control panel, see the User's Guide.) Press any of the Menu buttons (+, -, OK or Back) to display the main menu. Then press + or - to choose Network. Proceed to the menu selection you wish to configure. (For additional information on the menu, see Function table and default factory settings on page 37.
PAGE 37
Control panel setup IP Address 5 This field displays the current IP address of the machine. If you have chosen a Boot Method of Static, enter the IP address that you wish to assign to the machine (check with your network administrator for the IP address to use). If you have chosen a method other than Static, the machine will attempt to determine its IP address using the DHCP or BOOTP protocols.
PAGE 38
Control panel setup Ethernet (wired network only) 5 Ethernet link mode. Auto allows the print server to operate in 100BASE-TX full or half duplex, or in 10BASE-T full or half duplex mode by auto negotiation. Note If you incorrectly set this value, you may not be able to communicate with your print server. Status (For HL-4140CN and HL-4150CDN)/Wired Status (For HL-4570CDW(T)) 5 This field displays the current wired network status.
PAGE 39
Control panel setup Channel 5 This field displays the current wireless network channel. Speed 5 This field displays the current wireless network speed. SSID 5 This field displays the current wireless network SSID. The display shows up to 32 characters of the SSID name. Comm.Mode 5 This field displays the current wireless network communication mode. MAC Address 5 The MAC address is a unique number assigned for the machine's network interface.
PAGE 40
Control panel setup Reset the network settings to the factory default 5 You can reset the print server back to its default factory settings (resetting all information such as the password and IP address information). Note • This function resets all wired and wireless network settings to the factory default. • You can also reset the print server back to its factory default settings using the BRAdmin applications or Web Based Management. (For more information, see Other Management Utilities on page 6.
PAGE 41
Control panel setup Printing the WLAN report (For HL-4570CDW(T)) 5 The Print WLANReport prints your machine's wireless status report. If the wireless connection failed, check the error code on the printed report and refer to Troubleshooting in the Quick Setup Guide. a Press + or - to choose Machine Info.. Press OK. b Press + or - to choose Print WLANReport. Press OK.
PAGE 42
Control panel setup Function table and default factory settings HL-4140CN and HL-4150CDN 5 5 Factory settings are shown in Bold with asterisk. Main menu Submenu Menu Selections Options Network TCP/IP Boot Method Auto*/Static/RARP/BOOTP/DHCP IP Address (000.000.000.000)* 1 Subnet Mask (000.000.000.000)* 1 Gateway (000.000.000.000)* 1 IP Boot Tries 0/1/2/3*...
PAGE 43
Control panel setup HL-4570CDW(T) 5 Factory settings are shown in Bold with asterisk. Main menu Submenu Menu Selections Network Wired LAN TCP/IP Options Boot Method Auto*/Static/RARP/BOOTP/DHCP IP Address (000.000.000.000)* 1 Subnet Mask (000.000.000.000)* 1 Gateway (000.000.000.000)* 1 IP Boot Tries 0/1/2/3*...
PAGE 44
Control panel setup Main menu Submenu Menu Selections Network WLAN TCP/IP Options Boot Method Auto*/Static/RARP/BOOTP/DHCP IP Address (000.000.000.000)* 1 Subnet Mask (000.000.000.000)* 1 Gateway (000.000.000.000)* 1 IP Boot Tries 0/1/2/3*.../32767 APIPA On*/Off IPv6 Off*/On Setup Wizard 5 WPS/AOSS WPS w/PIN Code WLAN Status Status Signal Channel (Appears only when WLAN Enable is On.) Speed SSID Comm.
PAGE 45
6 Web Based Management 6 Overview 6 A standard Web Browser can be used to manage your machine using the HTTP (Hyper Text Transfer Protocol). You can get the following information from a machine on your network using a web browser.  Machine status information  Change network settings such as TCP/IP information  Configure Secure Function Lock 2.
PAGE 46
Web Based Management Note • If you are using a Domain Name System or enable a NetBIOS name, you can enter another name such as “Shared_Printer” instead of the IP address. • For example: http://Shared_Printer/ If you enable a NetBIOS name, you can also use the node name. • For example: http://brnxxxxxxxxxxxx/ The NetBIOS name can be seen in the Network Configuration List. (To learn how to print the Network Configuration List, see Printing the Network Configuration List on page 35.
PAGE 47
Web Based Management Secure Function Lock 2.0 6 Secure Function Lock 2.0 from Brother helps you to save money and increase security by restricting the functions available on your Brother machine. Secure Function Lock allows you to configure passwords for selected users, granting them access to some, or all, of these functions, or limiting them to a page limit. This means that only authorized people can use them. You can configure and change the following Secure Function Lock 2.
PAGE 48
Web Based Management Restricting PC print by PC user login name 6 By configuring this setting, the machine can authenticate by PC user login name to allow a print job from a registered computer. a Click PC Print Restriction by Login Name. The PC Print Restriction by Login Name screen will appear. b c Choose On from PC Print Restriction.
PAGE 49
Web Based Management Synchronize with SNTP server 6 SNTP is the protocol used to synchronize the time used by the machine for Authentication with the SNTP time server. You can synchronize the time used by the machine on a regular basis with the Coordinated Universal Time (UTC) provided by the SNTP time server. Note This function is not available in some countries. a b c Click Network Configuration, and then click Configure Protocol. Select the SNTP check box to activate the setting.
PAGE 50
Web Based Management  Synchronizing Interval Enter the interval of hours which you want to synchronize to the server (1 to 168 hours). Note • You must configure Date&Time to synchronize the time used by the machine with the SNTP time server. Click Configure Date&Time and then configure Date&Time on the General Setup screen. 6 • Choose the Synchronize with SNTP server check box. You also need to verify your time zone settings correctly.
PAGE 51
Web Based Management Store Print Log to Network 6 The Store Print Log to Network feature allows you to save the print log file from your Brother machine to a network server using CIFS 1. You can record the ID, type of print job, job name, user name, date, time, the number of printed pages and color pages 2 for every print job. 1 CIFS is the Common Internet File System protocol that runs over TCP/IP allowing computers on a network to share files over an intranet or the Internet.
PAGE 52
Web Based Management  Auth. Method Choose the authentication method required for access to the CIFS server Auto, Kerberos 1 or NTLMv2 2. 1 Kerberos is an authentication protocol which allows devices or individuals to securely prove their identity to network servers using a single sign-on. 2 NTLMv2 is the default authentication method used by Windows to log into servers. For Kerberos and NTLMv2 Authentication you must also configure the Date&Time settings or the SNTP protocol (network time server).
PAGE 53
Web Based Management Error Detection Setting 6 You can choose what action is taken when the print log cannot be stored to the server due to a network error. a Choose Cancel Print or Ignore Log & Print in the Error Detection Setting of Store Print Log to Network.  Cancel Print If you choose Cancel Print, the print jobs are canceled when the print log cannot be stored to the server.
PAGE 54
Web Based Management Understanding Error Messages 6 You can confirm the error status on the LCD of your machine or Connection Status in Web Based Management.  Server Timeout This message will appear when you cannot connect to the server. Make sure that: • Your server address is correct. • Your server is connected to the network. • The machine is connected to the network.  Authentication Error The message will appear when your Authentication Setting is not correct.
PAGE 55
Web Based Management Using Store Print Log to Network with Secure Function Lock 2.0 6 When Secure Function Lock 2.0 is active the names of the registered users for and USB Direct Print functions will be recorded in the Store Print Log to Network report. Example of the print Log with Secure Function Lock 2.
PAGE 56
7 Security features 7 Overview 7 In today’s world there are many security threats to your network and the data that travels over it. Your Brother machine employs some of the latest network security and encryption protocols available today. These network features can be integrated into your overall network security plan to help protect your data and prevent unauthorized access to the machine. This chapter explains how to configure them.
PAGE 57
Security features Managing your network machine securely using SSL/TLS 7 To manage your network machine securely, you need to use the management utilities with security protocols. Secure Management using Web Based Management (web browser) 7 We recommend to use HTTPS and SNMPv3 protocol for secure management. To use the HTTPS protocol, the following machine settings are required.  A self-signed certificate or a certificate issued by a CA, and a private key must be installed in the machine.
PAGE 58
Security features g h Make sure that the SNMP setting is enabled, and then click Advanced Setting of SNMP. You can configure the SNMP settings from the screen below. 7 We have three SNMP connection modes of operation. 7  SNMPv3 read-write access With this mode the print server uses version 3 of the SNMP protocol. If you want to manage the print server securely, use this mode. Note When you use the SNMPv3 read-write access mode, please note the following.
PAGE 59
Security features  SNMPv3 read-write access and v1/v2c read-only access In this mode the print server uses the read-write access of version 3 and the read-only access of version 1 and version 2c of the SNMP protocol. Note When you use the SNMPv3 read-write access and v1/v2c read-only access mode, some Brother applications (e.g. BRAdmin Light) that access to the print server do not work properly since they authorize the read-only access of version 1 and version 2c.
PAGE 60
Security features Sending or Receiving an E-mail securely 7 Configuration using Web Based Management (web browser) 7 You can configure secured E-mail sending with user authentication or E-mail sending and receiving using SSL/TLS on the Web Based Management screen. a b Start your web browser. Type “http://printer’s IP address/” into your browser (where “printer’s IP address” is the printer’s IP address).  For example: http://192.168.1.2/ c d Click Network Configuration.
PAGE 61
Security features SMTP settings  You can change the SMTP port number using Web Based Management. This is useful if your ISP (Internet Service Provider) implements the “Outbound Port 25 Blocking (OP25B)” service.  By changing the SMTP port number to a specific number which your ISP is using for the SMTP server (for example, port 587), you would then be able to send an E-mail via the SMTP server.  If you can use both POP before SMTP and SMTP-AUTH, we recommend choosing SMTP-AUTH.
PAGE 62
Security features Using IEEE 802.1x authentication 7 You can configure IEEE 802.1x authentication for a wired or a wireless network. To use IEEE 802.1x authentication, you must install a certificate issued by a CA. Contact your network administrator or your ISP (Internet Service Provider) whether a CA certificate import is necessary. (For how to install a certificate, see Using Certificates for device security on page 60.) IEEE 802.
PAGE 63
Security features Note • If you are using a Domain Name System or enable a NetBIOS name, you can enter another name such as “Shared_Printer” instead of the IP address. • For example: http://Shared_Printer/ If you enable a NetBIOS name, you can also use the node name. • For example: http://brnxxxxxxxxxxxx/ The NetBIOS name can be seen in the Network Configuration List. (To learn how to print the Network Configuration List, see Printing the Network Configuration List on page 35.
PAGE 64
Security features  CA Cert. + ServerID The verification method to check the Common Name 1 value of the Server Certificate, in addition to the CA reliability of the Server Certificate. 1 g The Common Name verification compares the Common Name of the Server Certificate to the character string configured for the Server ID. Before you use this method, contact your system administrator about the Server Certificate’s Common Name and then configure Server ID. After configuring, click Submit.
PAGE 65
Security features  If you are managing a mixed group of older print servers 2 and the print servers with BRAdmin Professional 3, we recommend using a different password in each group. This will ensure security is maintained on the new print servers. 1 BRAdmin Professional older than Ver. 2.80, Web BRAdmin older than Ver. 1.40, BRAdmin Light for Macintosh older than Ver. 1.
PAGE 66
Security features Configure certificate using Web Based Management 7 This feature can be configured using Web Based Management only. Follow these steps to access the configure certificate page using Web Based Management. a b Start your web browser. Type “http://printer’s IP address/” into your browser (where “printer’s IP address” is the printer’s IP address).  For example: http://192.168.1.2/ c d Click Network Configuration. e f g Click OK. Enter a user name and a password.
PAGE 67
Security features Creating and installing a certificate 7 Step by step chart for creating and installing a certificate self-signed certificate or 7 certificate from a CA Create a self-signed certificate using Web Based Management. (See page 62.) Create a CSR using Web Based Management. (See page 67.) Install the self-signed certificate to your computer. (See page 62.) Install the certificate issued by CA to your Brother machine using Web Based Management. (See page 68.
PAGE 68
Security features For Windows Vista® and Windows® 7 users that have administrator rights a b Click the 7 button and All Programs. Right-click Internet Explorer, and then click Run as administrator. 7 Note If the User Account Control screen appears, (Windows Vista®) Click Continue (Allow). (Windows® 7) Click Yes.
PAGE 69
Security features c Type “https://printer’s IP address/” into your browser to access your machine (where “printer’s IP address” is the printer’s IP address or the node name that you assigned for the certificate). Then, click Continue to this website (not recommended).. 7 d Click Certificate Error, and then click View certificates. For the rest of the instructions, follow the steps from step d in For Windows® 2000/XP and Windows Server® 2003/2008 users on page 65.
PAGE 70
Security features For Windows® 2000/XP and Windows Server® 2003/2008 users a b Start your web browser. c When the following dialog appears, click View Certificate. 7 Type “https://printer’s IP address/” into your browser to access your machine (where “printer’s IP address” is the IP address or the node name that you assigned for the certificate). 7 d Click Install Certificate... from the General tab. e When the Certificate Import Wizard appears, click Next.
PAGE 71
Security features f Choose Place all certificates in the following store and then, click Browse.... g Choose Trusted Root Certification Authorities and then click OK. 7 h Click Next. i Click Finish.
PAGE 72
Security features j Click Yes, if the fingerprint (thumbprint) is correct. Note The fingerprint (thumbprint) is printed on the Network Configuration List. (To learn how to print the Network Configuration List, see Printing the Network Configuration List on page 35.) k l Click OK. The self-signed certificate is now installed on your computer, and SSL/TLS communication is available. How to create a CSR a b 7 Click Create CSR on the Configure Certificate page.
PAGE 73
Security features d The CSR is created. Note • Follow your CA policy regarding the method to send a CSR to your CA. • If you are using Enterprise root CA of Windows Server® 2003/2008, we recommend using the Web Server for the certificate template when creating the Client Certificate for secure management. If you are creating a Client Certificate for an IEEE 802.1x environment with EAP-TLS authentication, we recommend using User for the certificate template.
PAGE 74
Security features How to export the self-signed certificate, the certificate issued by a CA, and the private key a b 7 Click Export shown with Certificate List on the Configure Certificate page. Enter the password if you want to encrypt the file. Note If a blank password is used, the output is not encrypted. c d e Enter the password again for confirmation, and then click Submit. Specify the location where you want to save the file. Now the certificate and private key are exported to your computer.
PAGE 75
Security features Import and export a CA certificate 7 You can store a CA certificate and private key on the machine by importing and exporting. How to import a CA certificate and private key a b Click Configure CA Certificate on the Configure Certificate page. Click Import CA Certificate. Click Submit. How to export a CA certificate and private key a b 7 7 Click Configure CA Certificate on the Configure Certificate page. Choose the certificate you want to export and click Export. Click Submit.
PAGE 76
8 Troubleshooting 8 Overview 8 This chapter explains how to resolve typical network problems you may encounter when using Brother machine. If, after reading this chapter, you are unable to resolve your problem, please visit the Brother Solutions Center at: http://solutions.brother.com/. Please go to the Brother Solutions Center at http://solutions.brother.com/ and click Manuals on your model page to download the other manuals.
PAGE 77
Troubleshooting I cannot complete the wireless network setup configuration. Question Interface Solution Is your security settings (SSID/Network Key) correct? wireless  Reconfirm and choose the correct security settings. • The manufacturer's name or model no. of the WLAN access point/router may be used as the default security settings. • See the instructions supplied with your WLAN access point/router for information on how to find the security settings.
PAGE 78
Troubleshooting Brother machine is not found on the network during the printer driver installation. (continued) Question Interface Solution Is there a wireless computer, Bluetooth supported device, microwave oven or digital cordless phone near the Brother machine or the WLAN access point/router? wireless Move all the devices away from Brother machine or WLAN access point/router. Brother machine cannot print over the network.
PAGE 79
Troubleshooting Brother machine cannot print over the network. Brother machine is not found on the network even after the successful installation. (continued) Question Interface Solution Is your Brother machine assigned with an available IP address? wired/ wireless (continued) 1 (Windows® 2000/XP, Windows Server® 2003/2008) Click the Start button, All Programs (Programs for Windows® 2000), Accessories and Windows Explorer, and then My computer.
PAGE 80
Troubleshooting Brother machine cannot print over the network. Brother machine is not found on the network even after the successful installation. (continued) Question Interface Solution Did your previous printing job fail? wired/ wireless  If the failed printing job is still in the print queue of your computer, delete it.  Double-click the printer icon in the following folder and then choose the Cancel All Documents in the Printer menu: (Windows® 2000) Start, Settings and then Printers.
PAGE 81
Troubleshooting I want to check my network devices are working properly. Question Interface Solution Is your Brother machine, access point/router or network hub turned on? wired/ wireless Make sure you have confirmed all instructions in First check the following: on page 71. Where can I find Brother machine's network settings, such as IP address? wired/ wireless Print the Network Configuration List. See Printing the Network Configuration List on page 35.
PAGE 82
A Appendix A A Supported protocols and security features Interface Ethernet Wireless Network (common) Network (Security) Network (Wireless) 1 1 A 10/100BASE-TX 1 IEEE802.
PAGE 83
B Index A M Ad-hoc mode .......................................................10, 11 AOSS™ ................................................. 12, 13, 16, 33 APIPA ....................................................................... 32 MAC Address ........................................ 4, 5, 6, 34, 35 B Network Configuration List ........................................ 35 Network Connection Repair Tool .............................. 73 BRAdmin Light .............................................
PAGE 84
Network Glossary In this Network Glossary, you will find basic information about advanced network features of Brother machines along general networking and common terms. The supported protocols and the network features differ depending on the model you are using. To find what features and network protocols are supported, see the Network User's Guide we have provided. To download the latest manual, please visit the Brother Solutions Center at (http://solutions.brother.com/).
PAGE 85
Definitions of notes We use the following icon throughout this User’s Guide: Note Notes tell you how you should respond to a situation that may arise or give tips about how the operation works with other features. IMPORTANT NOTE  Your product is approved for use in the country of purchase only. Do not use this product outside the country of purchase as it may violate the wireless telecommunication and power regulations of that country.
PAGE 86
Table of Contents 1 Types of network connections and protocols 1 Types of network connections ...................................................................................................................1 Wired network connection example.....................................................................................................1 Protocols....................................................................................................................................................
PAGE 87
B Index 26 iii
PAGE 88
1 Types of network connections and protocols 1 1 Types of network connections 1 Wired network connection example 1 Peer-to-Peer printing using TCP/IP 1 In a Peer-to-Peer environment, each computer directly sends and receives data to each device. There is no central server controlling file access or machine sharing.
PAGE 89
Types of network connections and protocols Network Shared printing 1 In a Network Shared environment, each computer sends data via a centrally controlled computer. This type of computer is often called a “Server” or a “Print Server”. Its job is to control the printing of all print jobs. 1 Client computer 2 Also known as “Server” or “Print server” 3 TCP/IP, USB or parallel (where available) 4 Network machine (your machine)  In a larger network, we recommend a Network Shared printing environment.
PAGE 90
Types of network connections and protocols Protocols 1 1 TCP/IP protocols and functions 1 Protocols are the standardized sets of rules for transmitting data on a network. Protocols allow users to gain access to network connected resources. The print server used on the Brother machine supports the TCP/IP (Transmission Control Protocol/Internet Protocol) protocol. TCP/IP is the most popular set of protocols used for communication such as Internet and E-mail.
PAGE 91
Types of network connections and protocols DNS client 1 The Brother print server supports the Domain Name System (DNS) client function. This function allows the print server to communicate with other devices by using its DNS name. 1 NetBIOS name resolution 1 Network Basic Input/Output System name resolution enables you to obtain the IP address of the other device using its NetBIOS name during the network connection.
PAGE 92
Types of network connections and protocols TELNET 1 The TELNET protocol allows you to control the remote network devices on a TCP/IP network from your computer. 1 SNMP 1 The Simple Network Management Protocol (SNMP) is used to manage network devices including computers, routers and Brother network ready machines. The Brother print server supports SNMPv1, SNMPv2c and SNMPv3. Note For the SNMPv3 protocol, see Security protocols on page 19.
PAGE 93
Types of network connections and protocols SNTP 1 The Simple Network Time Protocol is used to synchronize computer clocks on a TCP/IP network. You can configure the SNTP settings using Web Based Management (web browser). (For the details, see the Network User's Guide.) CIFS 1 1 The Common Internet File System is the standard way that computer users share files and printers in Windows®.
PAGE 94
2 Configuring your machine for a network 2 IP addresses, subnet masks and gateways 2 2 To use the machine in a networked TCP/IP environment, you need to configure its IP address and subnet mask. The IP address you assign to the print server must be on the same logical network as your host computers. If it is not, you must properly configure the subnet mask and the gateway address. IP address 2 An IP address is a series of numbers that identifies each device connected to a network.
PAGE 95
Configuring your machine for a network Subnet mask 2 Subnet masks restrict network communication.  Example: Computer 1 can talk to Computer 2 2 • Computer 1 IP Address: 192.168. 1. 2 Subnet Mask: 255.255.255.000 • Computer 2 IP Address: 192.168. 1. 3 Subnet Mask: 255.255.255.000 Where the 0 is in the Subnet mask, there is no limit to communication at this part of the address. What this means in the above example is, we can communicate with any device that has an IP address that begins with 192.168.1.
PAGE 96
Configuring your machine for a network IEEE 802.1x Authentication 2 IEEE 802.1x is an IEEE standard for wired and wireless network that limits an access from unauthorized network devices. Your Brother machine (supplicant) sends an authentication request to a RADIUS server (Authentication server) through your access point (Authenticator). After your request has been verified by the RADIUS server, your machine can have an access to the network.
PAGE 97
Configuring your machine for a network  EAP-TTLS EAP-TTLS (Extensible Authentication Protocol Tunneled Transport Layer Security) has been developed by Funk Software and Certicom. EAP-TTLS creates a similar encrypt SSL tunnel to PEAP, between a client and an authentication server, for sending a user ID and password. EAP-TTLS provides mutual authentication between the server and the client.
PAGE 98
3 Wireless network terms and concepts 3 Specifying your network 3 SSID (Service Set Identifier) and channels 3 3 You need to configure the SSID and a channel to specify the wireless network you want to connect to.  SSID Each wireless network has its own unique network name and it is technically referred to as SSID or ESSID (Extended Service Set Identifier). The SSID is a 32-byte or less value and is assigned to the access point.
PAGE 99
Wireless network terms and concepts Authentication and Encryption methods for a personal wireless network 3 Personal wireless network is a small network, for example using your machine in a wireless network at home, without IEEE 802.1x support. If you want to use your machine in an IEEE 802.1x supported wireless network, see Authentication and Encryption methods for an enterprise wireless network on page 13.
PAGE 100
Wireless network terms and concepts Network key 3  Open system/Shared key with WEP This key is a 64-bit or 128-bit value that must be entered in an ASCII or hexadecimal format. • 64 (40) bit ASCII: Uses 5 text characters. e.g. “WSLAN” (this is case sensitive). • 64 (40) bit hexadecimal: 3 Uses 10 digits of hexadecimal data. e.g. “71f2234aba” • 128 (104) bit ASCII: Uses 13 text characters. e.g. “Wirelesscomms” (this is case sensitive) • 128 (104) bit hexadecimal: Uses 26 digits of hexadecimal data. e.
PAGE 101
Wireless network terms and concepts Encryption methods 3  TKIP For TKIP, see TKIP on page 12.  AES For AES, see AES on page 12.  CKIP 3 The original Key Integrity Protocol for LEAP by Cisco Systems, Inc. User ID and password 3 The following security methods use the user ID less than 64 characters and the password less than 32 characters in length.
PAGE 102
4 Additional network settings from Windows® 4 Types of additional network settings 4 Following features are available to use if you want to configure additional network settings.  Web Services (Windows Vista® and Windows® 7)  Vertical Paring (Windows® 7) 4 Note Verify the host computer and the machine are either on the same subnet, or that the router is properly configured to pass data between the two devices.
PAGE 103
Additional network settings from Windows® d (Windows Vista®) Click , then choose Network. (Windows® 7) Click e , Control Panel, Network and Internet, and then View network computers and devices. The machine’s Web Services Name will be shown with the printer icon. Right-click the machine you want to install. Note The Web Services Name for the Brother machine is your model name and the MAC Address (Ethernet Address) of your machine (e.g.
PAGE 104
Additional network settings from Windows® Network printing installation for Infrastructure mode when using Vertical Pairing (Windows® 7) 4 Windows® Vertical Pairing is a technology to allow your Vertical Pairing supported wireless machine to connect to your Infrastructure network using the PIN Method of Wi-Fi Protected Setup and the Web Services feature. This also enables the printer driver installation from the printer icon that is in the Add a device screen.
PAGE 105
5 Security terms and concepts 5 Security features 5 Security terms 5  CA (Certificate Authority) A CA is an entity that issues digital certificates (especially X.509 certificates) and vouches for the binding between the data items in a certificate.  CSR (Certificate Signing Request) A CSR is a message sent from an applicant to a CA in order to apply for issue of a certificate.
PAGE 106
Security terms and concepts Security protocols 5 Note You can configure the protocol settings using Web Based Management (web browser). For the details, see the Network User's Guide. SSL (Secure Socket Layer) / TLS (Transport Layer Security) 5 These security communication protocols encrypt data to prevent security threats. HTTPS 5 5 The internet protocol that the Hyper Text Transfer Protocol (HTTP) uses SSL. IPPS 5 The printing protocol that the Internet Printing Protocol (IPP Version 1.
PAGE 107
Security terms and concepts Security methods for E-mail Sending and Receiving 5 Note You can configure the security methods settings using Web Based Management (web browser). For the details, see the Network User's Guide. POP before SMTP (PbS) 5 The user authentication method for sending E-mail from a client. The client is given permission to use the SMTP server by accessing the POP3 server before sending the E-mail.
PAGE 108
A Appendix A A Using services A A service is a resource that can be accessed by computers that wish to print to the Brother print server. The Brother print server provides the following predefined services (do a SHOW SERVICE command in the Brother print server remote console to see a list of available services): Enter HELP at the command prompt for a list of supported commands.
PAGE 109
Appendix A Using RARP to configure the IP address A The Brother print server’s IP address can be configured using the Reverse ARP (RARP) facility on your host computer.
PAGE 110
Appendix A Using BOOTP to configure the IP address A BOOTP is an alternative to RARP that has the advantage of allowing configuration of the subnet mask and gateway. In order to use BOOTP to configure the IP address make sure that BOOTP is installed and running on your host computer (it should appear in the /etc/services file on your host as a real service; type man bootpd or refer to your system documentation for information). BOOTP is usually started up via the /etc/inetd.
PAGE 111
Appendix A Using ARP to configure the IP address A If you are unable to use the BRAdmin application and your network does not use a DHCP server, you can also use the ARP command. The ARP command is available on Windows® systems that have TCP/IP installed as well as UNIX systems.
PAGE 112
Appendix A Using the TELNET console to configure the IP address A You can also use the TELNET command to change the IP address. TELNET is an effective method to change the machine’s IP address. But a valid IP address must already be programmed into the print server. Type TELNET at the command prompt of the system prompt, where is the IP address of the print server. When you are connected, push the Return or Enter key to get the “#” prompt.
PAGE 113
B Index A I AES ........................................................................... 12 APIPA ...................................................................3, 23 APOP ........................................................................ 20 ARP .......................................................................3, 24 Authentication ........................................................... 12 IEEE 802.1x ................................................................ 9 IP address ...
PAGE 114
Index S Security terms ........................................................... 18 Service ...................................................................... 21 Shared key ................................................................ 12 Shared key cryptosystem .......................................... 18 SMTP client ................................................................. 4 SMTP over SSL ........................................................ 20 SMTP-AUTH ..............................