HP Imaging and Printing Security Center 2.0 - Instant-On Security

30
In Figure 32, a JetDirect certificate request has been generated and provided to the
Certificate Authority (CA) for signing. The (CA) generates a signed identity certificate based
upon this request. The newly signed JetDirect certificate is installed, replacing the default
self-signed certificate. However, the connection remains untrusted because the client has no
knowledge of the (CA) that generated the JetDirect certificate.
FIGURE 32
In Figure 33, the client is made aware of the (CA) that generated the JetDirect’s signed
certificate. The CA’s identity certificate was exported and installed in the client’s Trusted
Root Certificate Authorities store. See Figure 34. Trusted communication now exists, but
only in one direction; from client to server. Mutual authentication between the pc and
printer does not exist at this point.