Re: FMAudit

[Frank Barton <bartonf () HUSSON EDU>]

Robert.

We have used it in the past, the vendor in question assured us that they
were only polling their copiers. Like you I was a little bit skeptical
about running this system that is designed to pull data from devices and
ship it out to parties effectively unknown.

Depending on the vendor, and the make of the copiers, the devices may have
their own 'call-home' mechanism.

Our Canon MFPs have a call-home mechanism built in, and we have set up a
local proxy server that allows them outbound access to the canon server for
call-home (and *only* that server)

A couple other options that you could have is to set up an isolated server
for FMAudit, and throw it behind a firewall that only allows it access to
the specific printers. Or to set up a local monitoring system (Nagios is my
go-to) and ship reports from it to your vendor on an ongoing basis

Frank

On Wed, Apr 17, 2019 at 5:49 PM Barton, Robert W. <bartonrt () lewisu edu>
wrote:

> Dale,
>
>
>
> Thanks.  I had some of that.  But, I was really hoping to setup a ‘filter’
> as to only send the service provider the copier’s they support.  I think
> this tool could be helpful for our Service Desk, which would need access to
> all the printers/copiers.  I will review the PDF.
>
>
>
> Robert W. Barton
>
> Executive Director of Information Security and Policy
>
> Lewis University
>
> One University Parkway
>
> Romeoville, IL  60446-2200
>
> 815-836-5663
>
>
>
> *From:* The EDUCAUSE Security Community Group Listserv <
> SECURITY () LISTSERV EDUCAUSE EDU> *On Behalf Of *Dale Lee
> *Sent:* Wednesday, April 17, 2019 4:47 PM
> *To:* SECURITY () LISTSERV EDUCAUSE EDU
> *Subject:* Re: [SECURITY] FMAudit
>
>
>
> Robert,
>
>
>
> We run FMAudit on our windows print server.  It communicates to the
> printer devices via SNMP for collection, then to the service provider on
> port 80/443.
>
>
>
> You could lock the internet outbound (N-S) to the range of the provider,
> and limit the local traffic (E-W) to only SNMP.
>
>
>
> I was able to find a FMAudit white paper at
> http://www.cannon4.com/products/software/pdf/fmaudit/FMA_Tech_White_Paper.pdf
>
>
>
> Dale Lee
>
>
>
> *From:* The EDUCAUSE Security Community Group Listserv <
> SECURITY () LISTSERV EDUCAUSE EDU>*On Behalf Of *Barton, Robert W.
> *Sent:* Wednesday, April 17, 2019 2:31 PM
> *To:* SECURITY () LISTSERV EDUCAUSE EDU
> *Subject:* [SECURITY] FMAudit
>
>
>
> This message was sent from outside the university. Do not click on links
> or open attachments unless you recognize the source of this email and know
> the content is safe.
>
> We have vendor that wants us to use FMAudit for our printer fleet.  I’m
> not finding security information on it.  Does anybody have experience with
> it?  I’m hoping to limit the data sent to their central server, and I THINK
> I can use a group to do that, but I need more information.  Anything could
> help.
>
>
>
> Robert W. Barton
>
> Executive Director of Information Security and Policy
>
> Lewis University
>
> One University Parkway
>
> Romeoville, IL  60446-2200
>
> 815-836-5663
>
>
>
> This message (including any attachments) is intended only for the use of
> the individual or entity to which it is addressed and may contain
> information that is non-public, proprietary, privileged, confidential, and
> exempt from disclosure under applicable law or may constitute as attorney
> work product. If you are not the intended recipient, you are hereby
> notified that any use, dissemination, distribution, or copying of this
> communication is strictly prohibited. If you have received this
> communication in error, notify us immediately by telephone at
> (815)-836-5950 and (i) destroy this message if a facsimile or (ii) delete
> this message immediately if this is an electronic communication. Thank you.
>
> This message (including any attachments) is intended only for the use of
> the individual or entity to which it is addressed and may contain
> information that is non-public, proprietary, privileged, confidential, and
> exempt from disclosure under applicable law or may constitute as attorney
> work product. If you are not the intended recipient, you are hereby
> notified that any use, dissemination, distribution, or copying of this
> communication is strictly prohibited. If you have received this
> communication in error, notify us immediately by telephone at
> (815)-836-5950 and (i) destroy this message if a facsimile or (ii) delete
> this message immediately if this is an electronic communication. Thank you.


-- 
Frank Barton, MBA
Security+, ACMT, MCP
IT Systems Administrator
Husson University