Deploying signed device certificates

DDU can deploy signed device certificates in .pem format.

  1. Obtain a signed device certificate file.
  2. At the command prompt, type one or more of the following:
    Note: To deploy the settings file to multiple printers, replace ‑ip IP with ‑csv DeviceListPath .
    • For unsecured printers

      DDUAppFolder\bin\ddu ‑deploy ‑ip IP ‑signCert FilePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder\bin\ddu ‑deploy -ip IP ‑signCert FilePath ‑usr UserName ‑pwd Password ‑pin PIN

      • Kerberos authentication method

        DDUAppFolder\bin\ddu ‑deploy -ip IP ‑signCert FilePath ‑usr UserName ‑pwd Password ‑rlm RealmName ‑rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder\bin\ddu ‑deploy -ip IP ‑signCert FilePath ‑usr UserName ‑pwd Password ‑rlmType LDAP ‑rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder\bin\ddu ‑deploy -ip IP ‑signCert FilePath ‑usr UserName ‑pwd Password ‑rlm RealmName ‑rlmType LDAP_GSSAPI ‑rlmSetup RealmSetupName

    where:

    • DDUAppFolder is the location of the DDU folder.
    • IP is the IP address of the printer.
    • FilePath is the location of the CA certificate file.
    • DeviceListPath is the location of the .csv file that contains the list of IP addresses.
    • UserName is the user name for accessing secured printers.
    • Password is the password for accessing secured printers.
    • PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.
    • RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.
    • RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.
  3. Check the progress of the deployment in the DDU status window.