Using the command line

Understanding the supported commands

Understanding the supported commands

Command

Description

-action

Specifies the action for the application.

Possible values
  • start

  • stop

  • uninstall

-app

Specifies the name of the installed application.

-appfls

Specifies that the supplied flash file is an application.

-appVer

Specifies the version information for the installed application. This command is optional.

-ca y

Where y is the location of the printer CA certificate file.

Specifies the location of the printer CA certificate file.

-caSign

Updates the signed printer CA certificate file.

-checkhostname

Checks if the common name of the certificate matches the host name of the device. It aborts the deployment if it does not match.

-csv y

Where y is the location of the .csv file.

Specifies the location of the .csv file that contains the printer IP addresses.

-delay y

Where y is the interval between tasks in milliseconds.

Specifies the interval between tasks.

-deleteDeviceCert

Deletes default device certificates.

-deploy

Deploys a package or .ucf file.

-discover

Discovers printers.

-dpl  y

Where y is the location of the package ZIP file.

Specifies the location of the deployable package ZIP file.

-exportCA

Exports the printer CA certificates.

-exportLogs

Exports device logs including device history.

-exportReports

Exports all device reports.

-exportSettings

Exports device settings.

-exportShortcuts

Exports device shortcuts.

-f

Deploys the firmware flash file without checking the firmware version on the printer.

-fls  y

Where y is the location of the .fls file.

Specifies the location of the .fls file.

-friendlyname y

Where y is the friendly name of the PKCS certificate.

Specifies friendly name of the PKCS certificate.

-fwfls

Specifies that the provided .fls file is a firmware.

-fwr  y

Where y is the location of the firmware flash file.

Specifies the location of the firmware flash file.

-help

Shows all the supported command options in DDU.

-ip  y

Where y is the printer IP address.

Specifies a list of comma-separated IP addresses or host names, or IP address ranges.

-lic  y

Where y is the location of the license file.

Specifies the location of the license file.

-lictech  y

Where y is the license technology type.

Specifies the license technology.

Possible values
  • FNP

  • LEX

-nocsv

Specifies that the discovery output must not be written in the .csv file.

-npa y

Where y is the location of the .npa file.

Specifies the absolute path of the .npa file.

-npaport y

Where y is the port used to send the command.

Specifies the NPA port that is used for sending the NPA command to the printer.

-out y

Where y is the location of the folder where the discovery certificate files are stored.

Specifies the location of the folder where the discovery certificate files are stored.

-pin y

Where y is the PIN for accessing secured printers.

Specifies the PIN for accessing secured printers.

-pkcs y

Where y is the location of the PKCS certificate file.

Specifies the location of the PKCS certificate file.

-pkcspassword y

Where y is the password of the PKCS certificate file.

Specifies the password of the PKCS certificate file.

-pkg y

Where y is the location of the package ZIP file obtained from Package Builder.

Specifies the location of the package ZIP file obtained from Package Builder.

-pwd  y

Where y is the password for accessing secured printers.

Specifies the password for accessing secured printers.

-q

Executes commands without a status window. 

-reboot

Reboots printers.

-rhj

Delete held print jobs.

-rlm

The LDAP Kerberos realm.

-rlmSetup  y

Where y is the setup name configured on the printer when using realm-based authentication method.

Specifies the setup name configured on the printer when using realm-based authentication method.

-rlmType y

Where y is the login realm type configured on the printer.

Specifies the login realm type configured on the printer.

Possible values
  • KERBEROS

  • LDAP

-signCert  y

Where y is the location of the signed device certificate file.

Specifies the location of the signed device certificate file.

-snf

Specifies if the file is a Scan-to-Network configuration file.

-stop

Stops the workflow.

-ucf  y

Where y is the location of the .ucf file.

Specifies the location of the .ucf file.

-usr  y

Where y is the user name for accessing secured printers.

Specifies the user name for accessing secured printers.

-varCsv  y

Where y is the location of the Virtual Solution Center (VSC) file that contains variable setting information.

Specifies the location of the VSC file that contains variable setting information.

-vcc  y

Where y is the location of the VSC Configuration file.

Specifies the location of the VSC Configuration file.

-workflow y

Where y is the location of the workflow file.

Executes a workflow configuration.


Discovering printers

  1. At the command prompt, type either of the following:

    • For a single printer

      DDUAppFolder \bin\ddu -discover -ip IP -out SavePath

    • For multiple printers

      DDUAppFolder \bin\ddu -discover -ip IP_addresses -out SavePath

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the device.

    IP_addresses are the IP addresses or host names of the devices separated by commas.

    SavePath is the location where you want to save the device list.

  2. Check the progress of the deployment in the DDU status window.

Deploying eSF application and license packages

Deploying eSF application and license packages

Before deploying to secured printers, make sure that the printer Firmware Updates access control is enabled. For more information, see Enabling firmware updates access control .

Note:  To create eSF application and license packages from Package Builder, see the Package Builder User’s Guide .
  1. Extract the deployment package to your local drive.

  2. At the command prompt, type one or more of the following:

    Note:  To deploy the settings file to multiple printers, replace -ip IP with -csv DeviceListPath .
    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -pkg FilePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -pkg FilePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP --pkg FilePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -pkg FilePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -pkg FilePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    FilePath is the location of the package file obtained from Package Builder.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  3. Check the progress of the deployment in the DDU status window.

Deploying custom packages

Deploying custom packages

Before deploying to secured printers, make sure that the printer Firmware Updates access control is enabled. For more information, see Enabling firmware updates access control .

DDU can deploy custom solutions in the form of custom packages. For information on producing custom packages, contact your Lexmark representative.

Note:  Deploying custom packages with licenses is not supported.
  1. Save the custom package file to your local drive.

  2. At the command prompt, type one or more of the following:

    Note:  To deploy the settings file to multiple printers, replace -ip IP with -csv DeviceListPath .
    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -dpl FilePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -dpl FilePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -dpl FilePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -dpl FilePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -dpl FilePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    FilePath is the location of the custom package file.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  3. Check the progress of the deployment in the DDU status window.

Deploying settings files (.ucf)

Deploying settings files (.ucf)

DDU can deploy eSF application settings and printer settings files in .ucf format.

Note:  You can export a configuration from your eSF application or create a configuration file.
  1. Save the configuration file to your local drive.

  2. At the command prompt, type one or more of the following:

    Notes:

    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -ucf FilePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -ucf FilePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -ucf FilePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -ucf FilePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -ucf FilePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    FilePath is the location of the configuration file.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  3. Check the progress of the deployment in the DDU status window.

Deploying CA certificates

Deploying CA certificates

DDU can deploy CA certificates with the following formats:

  1. Obtain a CA certificate file.

  2. At the command prompt, type one or more of the following:

    Note:  To deploy the settings file to multiple printers, replace -ip IP with -csv DeviceListPath .
    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -ca FilePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -ca FilePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -ca FilePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -ca FilePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -ca FilePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    FilePath is the location of the CA certificate file.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  3. Check the progress of the deployment in the DDU status window.

Deploying PKCS certificates

DDU can deploy PKCS certificates in .pfx and .p12 format.

  1. Obtain a PKCS certificate file.

  2. At the command prompt, type one or more of the following:

    Note:  To deploy the PKCS file to multiple printers, replace -ip IP with -csv DeviceListPath .
    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -pkcs FilePath -pkcspassword PKCSPassword -friendlyname FriendlyName -checkhostname

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -pkcs FilePath -pkcspassword PKCSPassword -friendlyname FriendlyName -checkhostname -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -pkcs FilePath -pkcspassword PKCSPassword -friendlyname FriendlyName -checkhostname -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -pkcs FilePath -pkcspassword PKCSPassword -friendlyname FriendlyName -checkhostname -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -pkcs FilePath -pkcspassword PKCSPassword -friendlyname FriendlyName -checkhostname -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    FilePath is the location of the CA certificate file.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

    PKCSPassword is the password of the PKCS file.

    FriendlyName is the friendly name of the certificate.

    checkhostname is required only for the validation of printer host name with the common name of the certificate.

  3. Check the progress of the deployment in the DDU status window.

Deploying signed device certificates

Deploying signed device certificates

DDU can deploy signed device certificates in .pem format.

  1. Obtain a signed device certificate file.

  2. At the command prompt, type one or more of the following:

    Note:  To deploy the settings file to multiple printers, replace -ip IP with -csv DeviceListPath .
    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -signCert FilePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -signCert FilePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -signCert FilePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -signCert FilePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -signCert FilePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    FilePath is the location of the CA certificate file.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  3. Check the progress of the deployment in the DDU status window.

Deploying NPA files

Deploying NPA files

DDU can send NPA command to printers by deploying .npa files.

  1. Obtain an NPA file.

  2. At the command prompt, type one or more of the following:

    • DDUAppFolder \bin\ddu -deploy -ip IP -npa NPA FilePath -npaport NPAPort

      Note:  To deploy NPA file to multiple printers, replace -ip IP with -csv DeviceListPath .

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    NPAFilePath is the location of the NPA file.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    NPAPort is the port using which, the NPA command is sent.

    Note:  NPA command is sent using an unsecured channel. The command does not require any authentication method.
  3. Check the progress of the deployment in the DDU status window.

Deploying configuration file bundles

Deploying configuration file bundles

DDU can deploy configuration file bundles only in eSF version 4 or later.

  1. Obtain a configuration file bundle.

  2. At the command prompt, type one or more of the following:

    Notes:

    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -vcc FilePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -vcc FilePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -vcc FilePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -vcc FilePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -vcc FilePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    FilePath is the location of the configuration file bundle.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  3. Check the progress of the deployment in the DDU status window.

Deploying licenses

Deploying licenses

  1. Obtain the license file.

  2. At the command prompt, type one or more of the following:

    Notes:

    • To deploy licenses to eSF version 3 or earlier printers, add -app AppID at the end of the command, where AppID is the application ID.
    • To deploy the settings file to multiple printers, replace -ip IP with -csv DeviceListPath .
    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -lic FilePath -lictech LicenseType

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -lic FilePath -lictech LicenseType -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -lic FilePath -lictech LicenseType -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -lic FilePath -lictech LicenseType -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -lic FilePath -lictech LicenseType -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    FilePath is the location of the license file.

    LicenseType is the license type. Type LEX for eSF version 4 or later licenses, or FNP for eSF version 3 or earlier licenses. For more information, contact your Lexmark representative.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  3. Check the progress of the deployment in the DDU status window.

  4. Note:  You cannot create a workflow with a mix of LEX- and FNP-type printers.
Deploying firmware

Deploying firmware

Before deploying to secured printers, make sure that the printer Firmware Updates access control is enabled. For more information, see Enabling firmware updates access control .

DDU can deploy only fullnet firmware files in .fls format. Fullnet firmware does not include the Engine code and the Scanner code. For more information, contact your Lexmark representative.

Note:  To deploy raw firmware flash files, engine codes, scanner codes, or applications using the command line, see Deploying raw flash files .
  1. Obtain a firmware file.

  2. At the command prompt, type one or more of the following:

    Note:  To deploy the settings file to multiple printers, replace -ip IP with -csv DeviceListPath .
    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -fls FwrFilePath -fwfls

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -fls FwrFilePath -fwfls -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -fls FwrFilePath -fwfls -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -fls FwrFilePath -fwfls -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -fls FwrFilePath -fwfls -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    FwrFilePath is the location of the firmware file.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  3. Check the progress of the deployment in the DDU status window.

  4. Note:  To enable force deployment, add -f at the end of the command. Force deployment lets you deploy a firmware file without checking the firmware version of the printer.
Deploying raw flash files

Deploying raw flash files

Before deploying to secured printers, make sure that the printer Firmware Updates access control is enabled. For more information, see Enabling firmware updates access control .

Use this feature only when packages are not available, or when deploying engine codes, scanner codes, or applications. Deploying a raw firmware flash file may take some time to finish. Make sure that the firmware deployment settings are configured accordingly.

  1. Obtain an application, firmware, or engine flash file.

  2. At the command prompt, type one or more of the following:

    Notes:

    • To deploy the settings file to multiple printers, replace -ip IP with -csv DeviceListPath .
    • DDU does not validate other raw flash files.
    Warning—Potential Damage:  Deploying these flash files may damage the printer.
    • For unsecured printers

      • Deploying an application flash file

        DDUAppFolder \bin\ddu -deploy -ip IP -fls AppFilePath -appfls

      • Deploying an engine code, scanner code, or other raw flash file

        DDUAppFolder \bin\ddu -deploy -ip IP -fls OtherFilePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        • Deploying an application flash file

          DDUAppFolder \bin\ddu -deploy -ip IP -fls AppFilePath -appfls -usr UserName -pwd Password -pin PIN

        • Deploying an engine code, scanner code, or other raw flash file

          DDUAppFolder \bin\ddu -deploy -ip IP -fls OtherFilePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        • Deploying an application flash file

          DDUAppFolder \bin\ddu -deploy -ip IP -fls AppFilePath -appfls -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

        • Deploying an engine code, scanner code, or other raw flash file

          DDUAppFolder \bin\ddu -deploy -ip IP -fls OtherFilePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        • Deploying an application flash file

          DDUAppFolder \bin\ddu -deploy -ip IP -fls AppFilePath -appfls -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

        • Deploying an engine code, scanner code, or other raw flash file

          DDUAppFolder \bin\ddu -deploy -ip IP -fls OtherFilePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        • Deploying an application flash file

          DDUAppFolder \bin\ddu -deploy -ip IP -fls AppFilePath -appfls -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

        • Deploying an engine code, scanner code, or other raw flash file

          DDUAppFolder \bin\ddu -deploy -ip IP -fls OtherFilePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    AppFilePath is the location of the application flash file (.fls).

    OtherFilePath is the location of the raw flash file (.fls).

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  3. Check the progress of the deployment in the DDU status window.

Deploying tasks

Deploying tasks

DDU can deploy tasks that start, stop, or uninstall an application.

  1. At the command prompt, type one or more of the following:

    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -app AppID -action Action -appVer AppVersion

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -app AppID -action Action -appVer AppVersion -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -app AppID -action Action -appVer AppVersion -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -app AppID -action Action -appVer AppVersion -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -app AppID -action Action -appVer AppVersion -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address of the printer.

    AppID is the ID of the application you want to do the task with. For more information on obtaining the application ID, contact your solution provider.

    Action is the action you want to do. Type start , stop , or uninstall .

    AppVersion is the version of the application. For more information on obtaining the version number, contact your solution provider.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  2. Check the progress of the deployment in the DDU status window.

Restarting printers

Restarting printers

  1. At the command prompt, type one or more of the following:

    • For unsecured printers

      DDUAppFolder \bin\ddu -reboot -ip IP

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -reboot -ip IP -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -reboot -ip IP -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -reboot -ip IP -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -reboot -ip IP -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the printer. To restart multiple printers, type the IP addresses or host names of the printers separated by commas.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  2. Check the progress of the deployment in the DDU status window.

Removing held print jobs

Removing held print jobs

  1. At the command prompt, type one or more of the following:

    • For unsecured printers

      DDUAppFolder \bin\ddu -rhj -ip IP

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -rhj -ip IP -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -rhj -ip IP -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -rhj -ip IP -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -rhj -ip IP -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the printer. To restart multiple printers, type the IP addresses or host names of the printers separated by commas.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  2. Check the progress of the deployment in the DDU status window.

Increasing the interval between tasks

Increasing the interval between tasks

  1. At the command prompt, type DDUAppFolder \bin\ddu -ip IP -delay Time

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the device.

    Time is the interval between tasks in milliseconds.

  2. Check the progress of the deployment in the DDU status window.

Updating device certificates

Updating device certificates

  1. At the command prompt, type one or more of the following:

    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -ip IP -caSign

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -ip IP -caSign -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -caSign -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -caSign -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -ip IP -caSign -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the printer. To restart multiple printers, use commas to separate multiple IP addresses or host names.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  2. Check the progress of the deployment in the DDU status window.

Deleting device certificates

Deleting device certificates

  1. At the command prompt, type one or more of the following:

    • For unsecured printers

      DDUAppFolder \bin\ddu -deleteDeviceCert -ip IP

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deleteDeviceCert -ip IP -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deleteDeviceCert -ip IP -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deleteDeviceCert -ip IP -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deleteDeviceCert -ip IP -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the printer. To restart multiple printers, use commas to separate multiple IP addresses or host names.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  2. Check the progress of the deployment in the DDU status window.

  3. Note:  The printer reboots after you delete the device certificate.
Exporting device certificates

Exporting device certificates

  1. At the command prompt, type one or more of the following:

    • For unsecured printers

      DDUAppFolder \bin\ddu -exportCA -ip IP -out SavePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -exportCA -ip IP -out SavePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -exportCA -ip IP -out SavePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -exportCA -ip IP -out SavePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -exportCA -ip IP -out SavePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the printer. To restart multiple printers, use commas to separate multiple IP addresses or host names.

    SavePath is the location of the stored certificate files.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  2. Check the progress of the deployment in the DDU status window.

Exporting all device settings

Exporting all device settings

  1. At the command prompt, type one or more of the following:

    • For unsecured printers

      DDUAppFolder \bin\ddu -exportSettings -ip IP -out SavePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -exportSettings -ip IP -out SavePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -exportSettings -ip IP -out SavePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -exportSettings -ip IP -out SavePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -exportSettings -ip IP -out SavePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the printer. To restart multiple printers, use commas to separate multiple IP addresses or host names.

    SavePath is the location of the stored certificate files.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  2. Check the progress of the deployment in the DDU status window.

Exporting device shortcuts

Exporting device shortcuts

  1. At the command prompt, type one or more of the following:

    • For unsecured printers

      DDUAppFolder \bin\ddu -exportShortcuts -ip IP -out SavePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -exportShortcuts -ip IP -out SavePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -exportShortcuts -ip IP -out SavePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -exportShortcuts -ip IP -out SavePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -exportShortcuts -ip IP -out SavePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the printer. To restart multiple printers, use commas to separate multiple IP addresses or host names.

    SavePath is the location of the stored certificate files.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  2. Check the progress of the deployment in the DDU status window.

Exporting all device reports

Exporting all device reports

  1. At the command prompt, type one or more of the following:

    • For unsecured printers

      DDUAppFolder \bin\ddu -exportReports -ip IP -out SavePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -exportReports -ip IP -out SavePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -exportReports -ip IP -out SavePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -exportReports -ip IP -out SavePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -exportReports -ip IP -out SavePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the printer. To restart multiple printers, use commas to separate multiple IP addresses or host names.

    SavePath is the location of the stored certificate files.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  2. Check the progress of the deployment in the DDU status window.

Exporting device logs

Exporting device logs

  1. At the command prompt, type one or more of the following:

    • For unsecured printers

      DDUAppFolder \bin\ddu -exportLogs -ip IP -out SavePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -exportLogs -ip IP -out SavePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -exportLogs -ip IP -out SavePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -exportLogs -ip IP -out SavePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -exportLogs -ip IP -out SavePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    IP is the IP address or host name of the printer. To restart multiple printers, use commas to separate multiple IP addresses or host names.

    SavePath is the location of the stored certificate files.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  2. Check the progress of the deployment in the DDU status window.

Deploying workflows

Deploying workflows

  1. Store the workflow file that was created or saved by using the DDU graphical user interface to your local drive.

  2. At the command prompt, type one or more of the following:

    Note:  To add external printers to a workflow, add -ip IP to add a single printer, or -csv DeviceListPath to add multiple printers before -workflow FilePath . External printers override the printers added in the workflow. If you add external printers, then the workflow is deployed to these printers.
    • For unsecured printers

      DDUAppFolder \bin\ddu -deploy -workflow FilePath

    • For secured printers

      • Basic authentication method using user name, password, or PIN

        DDUAppFolder \bin\ddu -deploy -workflow FilePath -usr UserName -pwd Password -pin PIN

      • Kerberos authentication method

        DDUAppFolder \bin\ddu -deploy -workflow FilePath -usr UserName -pwd Password -rlm RealmName -rlmType KERBEROS

      • LDAP authentication method

        DDUAppFolder \bin\ddu -deploy -workflow FilePath -usr UserName -pwd Password -rlmType LDAP -rlmSetup RealmSetupName

      • LDAP + GSSAPI authentication method

        DDUAppFolder \bin\ddu -deploy -workflow FilePath -usr UserName -pwd Password -rlm RealmName -rlmType LDAP_GSSAPI -rlmSetup RealmSetupName

    where:

    DDUAppFolder is the location of the DDU folder.

    FilePath is the location of the workflow file.

    IP is the IP address of the printer.

    DeviceListPath is the location of the .csv file that contains the list of IP addresses.

    UserName is the user name for accessing secured printers.

    Password is the password for accessing secured printers.

    PIN is the PIN for accessing secured printers. This option is applicable only to the basic authentication method.

    RealmName is the Kerberos realm name when using Kerberos or LDAP + GSSAPI authentication method.

    RealmSetupName is the setup name configured on the printer when using LDAP or LDAP + GSSAPI authentication method.

  3. Check the progress of the deployment in the DDU status window.

    Note:  In a workflow, tasks with Disable Task checkbox selected, are skipped during the execution of workflow.