...
| Port # | Protocol | Service Name | Connection Initiation | App | Notes |
|---|---|---|---|---|---|
| 389 | TCP | LDAP | Server to LDAP Server | OA | User authentication and/or authorisation |
| 636 | TCP | LDAPS | Server to LDAP Server | OA | User authentication and/or authorisation |
Optional Collector Server traffic
If you are using Collectors for remote auditing you should consider the following.
| Port # | Protocol | Service Name | Connection Initiation | App | Notes |
|---|---|---|---|---|---|
| 80 | TCP | HTTP | Collector to Server | OA | Not secure. Use HTTPS below instead if required |
| 443 | TCP | HTTPS | Collector to server | OA | Requires HTTPS/TLS setup on the Server to operate. |
Note: You may also wish to consider the day to day administration of the operating system and open-audit configurations on the server e.g. enable ssh access to the device.
Notes
Microsoft’s DCOM/WMI services typically use a large range of random ports to function.
...