The Certificate Enrollment Gateway solution adds the following port requirements.
Incoming traffic to Certificate Enrollment Gateway
In all the installation nodes, check that the following ports are accessible for incoming traffic to Cryptographic Security Platform.
Source | Protocol | Target service | Target port |
|---|---|---|---|
EST clients | TCP/HTTPS | Certificate Enrollment Gateway EST service | 1443 |
Outgoing traffic from Certificate Enrollment Gateway
In all the installation nodes, check that the following ports are accessible for outgoing traffic from Cryptographic Security Platform.
Source | Protocol | Target service | Target port |
|---|---|---|---|
Certificate Enrollment Gateway (all services) | TCP/HTTPS | ocsp.ssl.com | 443 |
Certificate Enrollment Gateway (all services) | TCP/HTTPS | crls.ssl.com | 443 |