Versions Compared

Old Version 5

changes.mady.by.user Mikhail Yakovlev

Saved on

compared with

New Version Current

changes.mady.by.user Daliya Agletdinova

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Axidian CertiFlow Server

Ports used by Indeed CM server

DNS

  • 53 (TCP/UDP), outgoing connections

Web applications, HTTP, HTTPS

  • 80 (TCP), incoming and outgoing connectionstraffic
  • 443 (TCP), incoming and outgoing connectionstraffic
  • 3001/3002 (TCP), incoming and outgoing traffic for Axidian AirCard Enterprise
  • 3003 (TCP),  incoming incoming and outgoing connections traffic for Indeed CM Axidian CertiFlow Agent

Mail notifications, SMTP server

  • 25 (TCP), outgoing traffic
  • 465 (TCP), outgoing traffic
  • 587 (TCP), outgoing connections3traffic

Active Directory, incoming and outgoing

connections

traffic

  • 53 (TCP/UDP) – DNS
  • 135 (TCP) – NetBIOSRPC
  • 389 (TCP/UDP) – LDAP
  • 636 (TCP) – LDAPS
  • 3268 (TCP/UDP) – LDAP Global Catalog
  • 3269 (TCP) – Microsoft LDAP Global Catalog Catalog SSL
  • 88 (TCP/UDP) – Kerberos
  • 464 (TCP/UDP) – Kerberos Password Change

Microsoft SQL Server, incoming and outgoing

connections

traffic

  • 135 (TCP) – Transact-SQL debugger
  • 1433 (TCP) – SQL Server default instance
  • 1434 (UDP) – SQL Server Browser service
  • 4022 (TCP) – Service Broker Broker

PostgreSQL Server, incoming and outgoing traffic

5432 (TCP/UDP) - PostgreSQL default port 

Microsoft CA, incoming and outgoing

connections

traffic

  • 135 (TCP) – NetBIOSRPC
  • 389 (TCP/UDP) – LDAP LDAP
  • 636 (TCP) – LDAPS
  • The port used for certificate requesting is DCOM/RPC74
Ports used by Indeed CM operator and user
  • Randomly allocated high DCOM/RPC (TCP) ports:
    • 1024 - 5000 for MS CA based on Windows 2003 and previous versions
    • 49152 - 65535 for MS CA based on Windows 2008 and newer versions
Info

Microsoft CA is implemented using DCOM technology. DCOM applications use random TCP port numbers from upper range by default. It is also possible to set the CA to use an explicitly defined TCP port.

User workstations

DNS

53 (TCP/UDP), outgoing connections

Web applications, HTTP, HTTPS

  • 80 (TCP), incoming and outgoing connections traffic 
  • 443 (TCP), incoming and outgoing connectionstraffic
  • 3001/3002 (TCP), incoming and outgoing traffic for Axidian AirCard Enterprise
  • 3003 (TCP),  incoming incoming and outgoing connections traffic for Indeed CM Agent

3The example is valid for Gmail. Port number might be different with other mail services.

  • Axidian CertiFlow Agent

Networking Scheme

Image Added4Microsoft CA is implemented using DCOM technology. The DCOM applications use random TCP port numbers from upper range by default. It is also possible to set the CA to use an explicitly defined TCP port.