Manualshelf

HP Imaging and Printing Security Center 2.0 - Instant-On Security

ManualsBrandsHP ManualsSoftwareHP Imaging & Printing Security Center E-LTU - 50 Device License
11121314151617181920
15
Initial Device Announcement Use Cases
Setting up the network as explained above allows for an initial default out-of-the-box device
security configuration experience. Below, is a list of the most common Secure at Install
use cases.
Use Case 1 – Auto Discovery and Policy Conformance
A DAA enabled HP IPSC supported device is placed on the network for the first time without
any staged configuration. The IPSC server Instant-On feature is configured to Accept
Device Announcements and Allow Automatic Remediation. The device acquires
a DHCP address and attempts to resolve the DNS hostname or alias of hp-print-mgmt.
Once hp-print-mgmt is resolved to the HP IPSC server IP address, the device is
authenticated and IPSC communication is established. HP IPSC places the newly discovered
device in the database, assigns a license, and remediates the device in accordance with the
established security policy. In this popular use case, a new device when added to the
network will be automatically discovered, licensed, assessed, remediated and verified by HP
IPSC.
Use Case 2 – Semi-Auto Discovery and Policy Conformance
A DAA enabled HP IPSC supported device is placed on the network and manually
configured with the IP address of the designated HP IPSC server. The HP IPSC server Instant-
On feature is configured to “Accept Device Announcements” and “Allow Automatic
Remediation”. The device acquires a DHCP address and establishes direct communication
with the HP IPSC server. Once authenticated, HP IPSC places the newly discovered device
in the database, assigns a license, and remediates the device in accordance with the
established security policy. This use case allows Instant-On functionality without DNS
resolve. The trade-off; IT DNS configuration is not required, but device pre-configuration is.
Use Case 3 – Pre-staged Device Discovery and Policy Conformance
A DAA enabled HP IPSC supported device is staged and placed on the network in a pre-
configured state. This pre-configured state may include an installed mutual authentication
certificate and applied security settings. The device is manually configured with the IP
address of the designated HP IPSC server. The HP IPSC server Instant-On feature is
configured to Accept Device Announcements and Allow Automatic Remediation.
After communication is established and authentication complete, the newly discovered
device is placed in the database. A license is assigned, and remediation occurs for any
security setting not in compliance with the applied security policy. This use case ensures all
the pre-configured new devices are discovered, mutually authenticated through certificates
and match security settings with the established security policy.