Safeguard Privilege Manager for Windows 4.4 - Administrator Guide

About this guide What is Privilege Manager? Installing Privilege Manager Configuring client data collection Configuring instant elevation Configuring self-service elevation Configuring temporary session elevation Configuring privileged application discovery Deploying rules Removing local admin rights Reporting Client-side UI Customization Using Microsoft tools Maintaining a least privileged use environment Database Planning Product Improvement Program

Configuring access to ports, websites, and processes

Your firewall must allow the Privilege Manager Console to access the following domains on ports 80 (non-SSL) and 443 (SSL). In addition to those ports, the Privilege Manager uses a configurable port for the data collection service (8003 by default), to recieve information from managed target devices.

Domain Used for
download.microsoft.com Microsoft updates
webservices.scriptlogic.com Privilege Manager web server
support.quest.com Quest Support Portal
dams-service.kace.com Data collection

The following features and processes must be allowed through the firewall on target devices:

  • Discovering users with local administrative rights:

    • Windows Management Instrumentation (WMI)

    • Distributed Component Object Model (DCOM)

    • File and Printer Sharing

    • Remote Administration

  • Testing rules:

    • Windows Management Instrumentation (WMI): dllhost.exe

    • Host process for Windows services: svchost.exe for 32-bit OS and %SystemRoot%\SysWOW64\svchost.exe for 64-bit OS

Related Documents

The document was helpful.

Select Rating

I easily found the information I needed.

Select Rating