...
You can also advise the following table
Component |
|---|
Port | Scope | Type |
|---|
Details
Default port
Bastion server/CAF
Database
Internal
Communication with the Microsoft SQL Server
1433
Access Portal
Internal
Set during installation or cab customized afterwards in the IIS bindings.
Source | Target | Purpose | Remark | ||||
|---|---|---|---|---|---|---|---|
CAF filter | 1433 | Internal | TCP | Bastion server | Database | Allowing the CAF filter to load the configuration and certificate analysis details | |
External access for bastion listening ports | 443 | External | TCP | Bastion | * | Allowing external clients to be filterd by the CAF | Configured during the initial configuration of the Bastion based on the particular integration requirement (common application such as ADFS will |
require 443) |
443
(This is dependent on the service wished to be protected)Site port binding
Internal
Set during installation or cab customized afterwards in the IIS bindings.
Admin Portal | 1433 | Internal | TCP | Admin Portal | Database |
Internal
Communication with the Microsoft SQL Server
1433
Allowing to configure the certificate analysis details and MDM integration | |||||||
Admin Portal | MDM API port | Internal | TCP | Admin Portal | API | To allow integration with the API and pull managed device information | Required only in case of implementing MDM device auditing |