PrinterOn document submission methods - c06234244
PrintWhere ® for Windows
Windows-based desktop PCs, laptops or Microsoft Surface® tablet users can securely submit print jobs using PrinterOn PrintWhere. PrintWhere is like a Windows driver that enables users to print using the standard (File>Print) workflow and enables them to securely deliver their print job to any remote print destination set up within PrinterOn, even if the destination printer is on a completely different network. PrintWhere also supports the ability to intelligently detect if a printer is available via the local network. It will then adjust the communication path to use the local network instead of the cloud delivery path. This is an optional configuration enabled the administrator.
PrintWhere provides additional security capability by first compressing, and then encrypting print data on the user’s computer before delivering it to the desired remote print destination. PrintWhere communicates on ports 443/631 and may optionally communicate on other ports for direct print. This is configurable.
PrinterOn provides a secure method for users to print on or off the secure network using the native print functionality of macOS. IPP (Internet Printing Protocol) is the native protocol used by the macOS platform and is also used by AirPrint. PrinterOn supports IPP printing enabling macOS users to print securely without the need to install drivers. PrinterOn also supports standard macOS authentication in addition to supporting native macOS print authentication with LDAP/AD or OpenID Connect-compatible identity management solutions. IPP-secured communications are over TLS and by default on ports 443/631.
iOS Mobile App
Users can search for printers and securely submit print jobs using the PrinterOn mobile application for iOS. There are also versions of this application available which are specifically “wrapped” to be deployed through popular Mobile Device Management (MDM) providers’ platforms (please refer to the section later in this document). PrinterOn mobile apps also integrate authentication with LDAP/AD or OpenID Connect-compatible identity management solutions, role-based access control, and guest print rules. Since PrinterOn Central Print Services uses TLS, the mobile applications benefit from the same security. Mobile apps communicate on ports 443. This is configurable.
PrinterOn Enterprise provides a secure way for users to print on or off the trusted corporate network using the native print functionality of iOS devices, with or without Apple Bonjour service discovery protocol. With the Print Delivery Gateway (PDG) installed in the deployment configuration, PrinterOn integrates the native iOS print authentication with LDAP/AD or OpenID Connect-compatible identity management solutions, role-based access control, and guest printing rules to inform the iOS devices how and where to find printers on a network.
While some deployments may be well suited to using Apple’s Bonjour, in many cases Bonjour is not a viable option for administrators to connect users to printers, even in simple network configurations. There are basic limitations of Bonjour that come into play in environments with large user and/or printer counts, and/or complex networks. The end result in many situations is an unmanageable deployment.
To provide the ability to print from an iOS device without Bonjour, you need to “push” printer profiles to an iOS device using any supported MDM/MAM service or Apple’s own configuration tools. IPP-secured communications are over TLS and by default on ports 443/631.
Android Mobile App
Users can search for printers and securely submit print jobs to Central Print Services (CPS) using the PrinterOn mobile application for Android. There are also versions of these applications available which are specifically “wrapped” to be deployed through popular Mobile Device Management (MDM) providers’ platforms (please refer to the section later in this document). PrinterOn mobile apps also integrate authentication with LDAP/AD or Open ID Connect-compatible identity management solutions, role-based access control, and guest print rules. Since CPS uses TLS, the mobile applications benefit from the same security. Mobile apps communicate on ports 443 by default. This is configurable on the server.
Google Cloud Print
For those wanting to bridge the gap between existing Google Cloud Print (GCP) workflows and PrinterOn Enterprise, the PDG service allows users to print seamlessly from any of the GCP client applications (ChromeOS, Chrome Browser etc.) to PrinterOn-enabled printers. It also enables administrators to create new GCP printers and map them to PrinterOn printers. This submission method is entirely optional and does require a connection to the Google Cloud Print services to print.
The combination of PrinterOn Enterprise and Google Cloud Print enables management of BYOD environments where devices do not connect exclusively to the existing print infrastructure. Google Cloud Print communicates using HTTPS/XMPP over ports 443/5222.
Users can submit their print jobs by simply forwarding an email to a printer’s email address. This can be done from any computer or mobile device that supports email. The user will receive an email response with release codes, one for the printed body of the email and one for each of the email attachments.
Emails sent from users can be received by a mailbox on a dedicated email service just for print jobs. PrinterOn leverages trusted and proven third-party email security services such as TLS, virus and spam filters. The PrinterOn service uses secure SMTP to generate email responses to print requests.
Users continue to use their existing email accounts and services, such as Office365, Google, iCloud or a company-managed mail service for receiving their messages and forward from their existing mail server to the PrinterOn email print service.
Documents can be submitted by uploading through a secure web portal. After authenticating, users simply select the desired printer and then upload the document they would like to print.
The web printing service is provided as part of CPS which uses TLS to provide additional security. From CPS, documents are forwarded to PAS on the trusted network to be rendered and printed. Web submission communicates on Port 443.
The PrinterOn web app uses the same underlying technology as Web Print and is designed for smartphones and tablets. It enables users to submit and release documents through the mobile web browser on their device. In addition to Android and iOS devices, the Web App is optimized for Windows Phone and BlackBerry® device screens. Similar to Web Print, the users authenticate themselves before selecting the desired printer and uploading the document they would like to print. The Web App leverages the Document Picker feature to allow the users to select the documents to be uploaded for printing.The Web App printing service is provided as part of CPS, which uses TLS, so it benefits from the same security. From CPS, documents are forwarded to PAS on the trusted network to be rendered and printed. Web submission communicates on Port 443.
Print Queue Monitoring Service (PQMS)
The Print Queue Monitoring Service enables jobs submitted to standard Windows print server queues to be delivered to remote printers throughout the PrinterOn infrastructure, thereby bridging the gap between existing Windows print queues and PrinterOn. It enables users to submit jobs using standard Windows workflows (File>Print) leveraging the capabilities of PrinterOn to deliver the pre-rendered data content to printers located anywhere in the world. PQMS communications are part of PDG. When PDG is installed, print jobs are retrieved using a standard Windows Printer Port installed on a PC or server. After retrieving the print job, the Print Delivery Gateway uses a TLS-secured connection to submit the job from the on-premise server to the PrinterOn services using port 443.