3.2 Security of access to the local web interface

Three approaches (independent of any network security that may also be in place at a site) for Polar3D printer local web interface access security are as follows, in order from most convenient/least secure, to least convenient/most secure:

1.

Default for a new Polar3D printer: Anyone who connects to the Polar3D printer’s local web interface can use the interface. The first person to go through the security light check becomes the printer owner; later persons going through the security light check can add themselves as additional managers of the printer. Anyone connecting can also use the “Reset Printer on the Polar Cloud” button, and thereby “obsolete” current ownership (registration) of the printer in the Polar Cloud; after which, such a person is then free to register him or herself (via the security light check) as the printer owner.

This is the default configuration of the Polar3D local web interface and the Polar Cloud, as it permits a newly purchased Polar3D printer to be easily connected to the Polar Cloud!

2.

Polar Cloud printer “SETTINGS” switch “Add Allowed” set to OFF position: Going through the security light check will not add later persons as additional printer managers. However, since anyone connecting to the Polar3D printer local web interface may still use the “Reset Printer on the Polar Cloud” button to “obsolete” the current ownership/registration of the printer, (after which the person may then re-register the printer to him or herself via the security light check), this configuration is intended to reduce cases of accidentally overriding existing printer registration, rather than to truly prevent printer re-registration.

While this configuration is not fundamentally more secure than the default configuration, it is often useful and suitable for teachers, or for other situations when others able to access the printer physically, or via the local network, are all essentially trusted. While reducing the chance that another person with physical or local network access to the Polar3D printer will accidentally override printer registration in the Polar Cloud, this configuration still allows others (such as new teachers or substitute teachers) to autonomously add themselves as additional printer managers. And if a Polar3D printer needs to be reassigned to another owner, again this remains possible (without explicit action by the current printer owner) via the “Reset Printer on the Polar Cloud” button.

3.

Password control on use of the Polar3D printer’s local web interface, configured via the “Security” pane of the “Network” screen of the Polar3D printer local web interface: the local web interface cannot be used without supplying a password.

This configuration of course is more secure. However, explicit action by the current printer owner will then be required to add printer managers, or to change printer ownership/registration in the Polar Cloud. And don’t lose the password!

Note also that site IT personnel may also choose to institute additional restrictions on accessing the Polar3D local web interface at the network level: for instance, permitting only certain local IP addresses to access the Polar3D printer local web interface over the local network. However, even if local network access is restricted, persons with physical access to the Polar3D printer would still be able to connect to the printer’s local web interface via physical Ethernet cable direct to the printer.