In addition to the ports listed in Required open ports, ensure no network restriction blocks access to the following ports.
Incoming traffic to Certificate Authorities
In all the installation nodes, check that the following ports are accessible for incoming traffic to Entrust PKI Hub.
Target Port | Protocol | Source | Target Service |
|---|---|---|---|
4443 | TCP/HTTPS | CAs | Green deployment testing |
7443 | TCP/HTTPS | CAs | Internal CA Gateway |
8880 | TCP/HTTP | CAs | Green deployment testing |
The deployment of the Certificate Authorities solution automatically opens these ports in the firewall of the machines hosting Entrust PKI Hub.
Outgoing traffic from Timestamping Authority
In all the installation nodes, check that the following ports are accessible for outgoing traffic from Entrust PKI Hub.
Target Port | Protocol | Source | Target Service |
|---|---|---|---|
1792 | NTLS | TSA | Luna Network HSM (if any) |
9000-9004 | TCP/HTTPS | TSA | nShield HSM (if any) |