Address Manager service ports - BlueCat Integrity - 9.5.0

Address Manager Administration Guide

Locale
English
Product name
BlueCat Integrity
Version
9.5.0
Note: The ports must be opened on the firewall for access to the Address Manager services listed. If the service isn't required or in use, it can be blocked.
Address Manager listener ports:
Port Number Protocol Use
22 TCP SSH / SSH2 / SCP connectivity to servers / Address Manager replication
80 TCP Management port for Address Manager access (HTTP)
88 TCP/UDP Kerberos / Active Directory Authentication / GSS-TSIG
123 UDP Network Time Protocol (NTP)
161 UDP SNMP management
443 TCP Secure management port used for Address Manager access (HTTPS)
1099 TCP Address Manager replication / JMX service
5432 TCP Address Manager replication
10045* TCP/UDP Address Manager and DNS/DHCP Server notification (unencrypted)
10046* TCP/UDP Address Manager and DNS/DHCP Server notification (encrypted)
Address Manager ports used as a client:
Port Number Protocol Use
21 TCP FTP
22 TCP/UDP Secure backup configured to save to a remote server (SFTP)
22 TCP SSH / SSH2 / SCP connectivity to servers / Address Manager replication
25 TCP/UDP Email notification (SMTP)
49 TCP TACACS+ authentication
53 TCP/UDP DNS, Discovery, Response Policy Search
88 TCP/UDP Kerberos / Active Directory Authentication / GSS-TSIG
123 UDP Network Time Protocol (NTP)
161 TCP/UDP IP Reconciliation, SNMP Monitoring
162*** UDP SNMP Traps
389** TCP/UDP LDAP authentication
514 UDP Syslog redirection from Address Manager
636 TCP SSL support (LDAP)
1099 TCP Address Manager replication
1812*** TCP/UDP RADIUS authentication
3269 TCP LDAPS for global catalog (GC)
5432 TCP Reporting, Disaster Recovery, database replication
10042* TCP Secure management and connectivity to DNS/DHCP Servers
Note: Port notices
  • *Opening one of these two ports is required for communication to DNS/DHCP Server. 10045 is required if notifications are set to unencrypted, and 10046 is required if notifications are set to encrypted.
  • ** These are the standard ports used for the specified protocol however, you can specify different ports.
  • *** These are the default ports however, you can change to use different ports.
  • When using HTTP, port 80 is required and port 443 is optional. When using HTTPS, port 443 is required and port 80 is optional.
  • Port 10045/10046 (depending on unencrypted/encrypted notifications) on all Address Manager servers in replication, including the Primary server, must be open for incoming connections. In addition, you must ensure to enable Internet Control Message Protocol (ICMP) to allow the Primary Address Manager server to reach the Secondary and Tertiary server.
  • When configuring or running database replication, ports 22, 801, 4431, 1099, and 5432 must be open on the firewall between the affected Address Manager servers.

    1Address Manager uses port 80 and 443 for bidirectional communication between the Primary and Secondary servers. Port 80 is not required if you have HTTP set to disabled.

  • Additional ports might need to be opened for iDRAC usage. For more information, refer to the Dell iDRAC User Guide.