I've model 7835 integrated in the LDAP forest in order to access network shares.
Everything is working fine but I would like to know if it's possible to restrict printing to a list of users or to setup a password/pin on the printer (by default the user should type it prior to have papers).
I've seen that is possible to use the "Secure Print" function: If I have correctly understood it's up to the user, prior to send the document, to setup the PIN on its PC.
I want the secret code settled by default on the printer and shared only with a group of people.
The goal is to prevent printing from other offices/BU of the same building.
If you just want specific people to print, and they all use a code, you might as well just enable XSA. (read attached pdf)
If you just want specific devices/people to print, then enable IP filtering and nobody but the ones using specific devices can print
Sorry for butting in on this convo, but im trying out ip filtering as 1 rougue user printing direct to printer,
have i set up the prinnter properly to allow only 2 print servers and my computer ip to accessi
I inputted the 3 IP seprately and got this
Is that me done..... will the rougue user be disabled(job discarded) as soon as they print? I need them to print throught the print server 10.100.32.142 for authentication for billing.
The pictures appear to be some sort of link to a picture that is an attachment from your Xerox email via Office365. Try editing your post and properly upload the pictures after you have downloaded them to your PC properly.
You have not blocked anything, if it is just one guy you are after, simply create 1 filter that says that guys IP address (His IP with a 32 mask) gets either Denied or Rejected. If you want to block everything and everyone that is not at those 3 IP addresses you show however, continue on.
Your settings will essentially do nothing, because none of your rules is blocking anything. You need to set it to either Drop or Reject anything coming from that persons IP address.. Your best bet, is to reject the entire Subnet and then allow only the 3 specific IP addresses. Be advised, you need to order the actions properly, so you need to Allow the IP's you want, and make sure the Reject appears lower in the list.
So you want to accept the IP's of:
To specify them as just those IP's, you add the IP mask 32
And then below them you want to reject the entire range of 10.100.32.X that is not the 3 listed above. To do the range, you enter it as 10.100.32.1 with a Mask of 24, which will in turn block anything from 10.100.32.1 - 10.100.32.254
Then again for the other LAN ala 10.102.24.1 with the mask 24
As long as the Accepts appear above the Rejects, it will work, but make sure the PC you are doing this from is in the accept fields ;-)
So for example, my PC is on an IP of 10.30.237.79, so I allow that IP with a mask of 32 (32 is just the specific IP) and reject anything from the 10.30.237.1 mask 24 (goes from the .1 to .254). It will block every one of the IP's that does not appear in the accept list above it. Which looks like this
You have no idea how happy I was when I confirmed this works, because if I had have blocked my entire Subnet and been unable to reach the device to undo it, my co-workers would have put on their looks of disapproval
Many thansks Joe
"You need to set it to either Drop or Reject anything coming from that persons IP address"
Is there any way to find the persons IP Address from the printer?
I've checked the audit log from printer but its not showing up in it.
If the ip of the offender cant be found can i use something like this(i found this else where) to reject everthing else other than the 3 ips i want?
"Create an additional IP filter to block all incoming traffic. Set, “Source IP Address” as 0.0.0.0
It is CRITICAL that the, “Precedence Order” is set to “Lowest (Add to End of List). – BE EXTRA CAREFUL, once this rule is enabled the printer can ONLY be accessed via the Printer Server’s IP address that was specified previously.
CRITICAL NOTE --- If you plan on removing or changing the IP Filter, YOU MUST DELETE THE 0.0.0.0 entry FIRST, otherwise you will have to reset the machine back to Service Factory Settings."
Thanks again Joe
If you have no way to source the IP of the person you are trying to block, you certainly should not be implementing IP filters.
I'm sorry, I am not comfortable at all continuing this thread, you are near certainly going to block all connections, which means the machine will be inaccessible to everyone.