Why Experts Exchange?

Experts Exchange always has the answer, or at the least points me in the correct direction! It is like having another employee that is extremely experienced.

Jim Murphy
Programmer at Smart IT Solutions

When asked, what has been your best career decision?

Deciding to stick with EE.

Mohamed Asif
Technical Department Head

Being involved with EE helped me to grow personally and professionally.

Carl Webster
CTP, Sr Infrastructure Consultant
Ask ANY Question

Connect with Certified Experts to gain insight and support on specific technology challenges including:

Professional Opinions
Ask a Question
Did You Know?

We've partnered with two important charities to provide clean water and computer science education to those who need it most. READ MORE

troubleshooting Question

Disabling SNMP on printers takes them out of service - how to address?

Avatar of hypercube
hypercubeFlag for United States of America asked on
Printers and ScannersNetworkingSecurity
18 Comments1 Solution132 ViewsLast Modified:
Our printers were found to have SNMP enabled and the default "public" community string.  This was reported in IT audit as a security risk - although I have my doubts re: importance of it.
Our response was to Disable SNMPv1v2 in each of the offending (HP) printers.
NOT a good idea it seems as the printers stopped working.
Since it's too time-consuming to go "touch" each of the computers, we simply Re-Enabled SNMPv1v2 and left the community string alone for now.

My question is to confirm or guide "what's next?".

We could use our current (private) SNMP community string but then it would be visible in the printers.  
And, since we don't knowingly use SNMP for the printers, there'd be no purpose.

We could use a new "fake" community string in the printers that we don't intend to use.
That would fix the IT audit finging.
But, would the printers stop working once again?

Or, we might do something else that I've not figured out.

As a matter of practice, I try to make sure that printers set up on computers use TCP/IP ports and don't fall into using WSD connection.
So far, I haven't found a connection between SNMP and WSD but I suspect it.
We had a number of computers that had fallen into WSD setups that were involved in the recent failure
I prefer to keep things simple and don't include WSD in that context.

What would you do to satisfy the IT audit finding AND avoid a lot of individual computer work?
Avatar of hdhondt
hdhondtFlag of Australia image

Our community of experts have been thoroughly vetted for their expertise and industry experience.

This problem has been solved!
Unlock 1 Answer and 18 Comments.
See Answers