Your firewall must allow the Safeguard Privileged Manager for Windows Console to access the following domains on ports 80 (non-SSL) and 443 (SSL). In addition to those ports, the Safeguard Privileged Manager for Windows uses a configurable port for the data collection service (8003 by default), to receive information from managed target devices.
Domain |
Used for |
---|---|
download.microsoft.com |
Microsoft updates |
webservices.scriptlogic.com |
Safeguard Privileged Manager for Windows web server |
support.oneidentity.com |
One Identity Support Portal |
dams-service.kace.com |
Data collection |
The following features and processes must be allowed through the firewall on target devices:
-
Discovering users with local administrative rights:
-
Windows Management Instrumentation (WMI)
-
Distributed Component Object Model (DCOM)
-
File and Printer Sharing
-
Remote Administration
-
-
Testing rules:
-
Windows Management Instrumentation (WMI): dllhost.exe
-
Host process for Windows services: svchost.exe for 32-bit OS and
%SystemRoot%\SysWOW64\svchost.exe for 64-bit OS
-