The table below specifies the ports and connectivity requirements for deploying the SphereShield cloud conditional access solution
See diagram here: Topology
The requirement in general are:
All SphereShield components need to be able to communicate with the database
The Bastion server need to be able to access the Admin Portal API port set in the IIS
The Bastion server needs to be accessible externally by the service.
e.g. ADFS uses port 443
You can also advise the following table
Component | Requirements | Type | Details | Default port |
|---|---|---|---|---|
Bastion server/CAF | Database | Internal | Communication with the Microsoft SQL Server | 1433 |
Access Portal | Internal | Set during installation or cab customized afterwards in the IIS bindings. | 80/443 | |
External access for bastion listening ports | External | Configured during the initial configuration based on the particular integration requirement (common application will be 443) | 443 (This is dependent on the service wished to be protected) | |
Admin Portal | Database | Internal | Communication with the Microsoft SQL Server | 1433 |
Site port binding | Internal | Set during installation or cab customized afterwards in the IIS bindings. | 80/443 |