HP Web Jetadmin - Security and HP Web Jetadmin
16
• Sensitive device configuration items stored within templates such as account details and
passwords
• Any other device-based credentials that are either stored for retrieval and use by HP Web
Jetadmin or used for device configuration
IMPORTANT: Backup data including the WJA’s Settings directory backup and WJA/SQL backup
.dat files should be secured. These files may contain sensitive information and should not be stored
un-secured.
Get Images feature
HP Web Jetadmin users can retrieve files directly from the Internet by using Get Images in the
Firmware Repository. These files can be automatically stored onto the HP Web Jetadmin server.
The HP Web Jetadmin client application runs on the end-user host computer. It can contact hp.com
and acquire an index file, which shows all available HP Jetdirect, printer, and MFP firmware images.
The user can select the desired firmware images to download to the client, and the downloaded files
are passed to the HP Web Jetadmin server host. The files are then available within the Firmware
Repository, and can be installed on HP devices by using the Firmware Upgrade functionality.
HP Web Jetadmin server and client applications do not check the authenticity of either the
downloaded files or the systems hosting them. The software simply contacts an hp.com URL using the
HTTP protocol and downloads files using the same HTTP protocol. Administrators should be aware
that this could constitute a security weakness within their particular environment.
To address this weakness, administrators and users can download HP printer and MFP firmware in
self-extracting, signed files as follows:
1. Use Internet Explorer to visit the HP Support and Drivers Web pages at hp.com for a particular
product model.
3. On the Download Drivers and Software pages select a file to be downloaded and click
Download.
4. Click Run within the Do you want to run or save this file? dialog box. The file will download and
a new dialog box will appear, reading Do you want to run this software?
5. Verify that the publisher displayed is HP.
6. Optionally, you can click HP to examine the digital signature information.
7. If the publisher information is correct, click Run to extract the driver from the self-extracting file.
8. Upload the extracted firmware image to HP Web Jetadmin by using Import in the Firmware
Repository.
NOTE At this time, HP does not sign firmware image downloads (DLD files) for HP Jetdirect print
servers.
Device disk security
Managing device credentials and passwords primarily prevents unauthorized management and
configuration. The following areas describe other ways of protecting devices. HP Secure Erase
technology is applied in two different ways to remove data from storage devices.