Available in PaperCut NG and PaperCut MF.

Use a trusted certificate

While self-signed certificates provide good security, the following warnings are still displayed when users access HTTPS sites using a fully-qualified domain name:

  • Domain mismatch

  • The security certificate presented by this website was not issued by a trusted certificate authority

These warnings are eliminated by using any one of the following types of trusted certificates:

  • certificates signed by a commercial certificate authority (CA) that is recognized by all popular web browsers. A complete list is in Windows under Control Panel > Internet Options > Content > Certificates > Trusted Root Certification Authorities.

  • certificates created by an organization that operates its own certificate authority that is recognized by their users' web browsers by way of a root certificate that is installed into all users' web browsers.

IMPORTANT

In addition to supporting CA-signed, trusted SSLSecure Sockets Layer (SSL) is the standard security technology for establishing an encrypted link between a web server and a browser. This link ensures that all data passed between the web server and browsers remain private and integral. The protocol uses a third party, a Certificate Authority (CA), to identify one end or both end of the transactions. To be able to create an SSL connection a web server requires an SSL certificate. When you choose to activate SSL on your web server you will be prompted to complete a number of questions about the identity of your website and your company. Your web server then creates two cryptographic keys - a Private Key and a Public Key./ HTTPS SHA2 certificates on port 9192, PaperCut NG/MF 18.3.0 or above now also supports CA-signed, trusted SSL/ HTTPS SHA2 or SHA256 certificates on port 9195. However, this is currently supported only on some devices. For more information about devices that support this, contact your Reseller or Authorized Solution Center.

PaperCut NG/MF allows you to:

NOTE

This is a technically complex area and there is an assumed level of experience with SSL certificates in general.