Submit a ticketCall us

Get a crash course on Network Monitoring delivered right to your inbox
This free 7-day email course provides a primer to the philosophy, theory, and fundamental concepts involved in IT monitoring. Lessons will explain not only how to perform various monitoring tasks, but why and when you should use them. Sign up now.

Home > Success Center > Patch Manager > Patch Manager 2.1.5 Administrator Guide > Installing Patch Manager > Port and Firewall Information

Port and Firewall Information

Created by Caroline Juszczak, last modified by MindTouch on Jun 23, 2016

Views: 644 Votes: 0 Revisions: 4

The following sections describe the ports used in the Patch Manager environment.

Port 135 TCP RPC Endpoint Mapper

The Patch Manager server uses this port to establish WMI connections to remote computers. It also uses this port to connect to the Service Control Manager (SCM) when it provisions the WMI providers dynamically on the remote computer.

Create a firewall exception to allow traffic from the Patch Manager server to your managed computers over this port. To do this if you are using Windows Firewall on your managed computers, enable the Inbound Rules in the Windows Management Instrumentation (WMI) group.

Port 445 TCP SMB over TCP

The Patch Manager server uses this port when it provisions the WMI providers to a remote computer.

Enable File and Print Sharing on the client systems using the applicable network management tools.

Port 4092 Console-to-Server Communication

The Patch Manager console uses this port to communicate to an independent Patch Manager application server. This is a one-way communication channel, so it only requires inbound TCP traffic on the application server.

Patch Manager servers in a distributed environment also use this port in the same manner for "downstream" communication. For example, the Patch Manager Primary Application Server (PAS) uses port 4092 to communicate with remote Patch Manager servers in secondary server roles.

Port 389 TCP Lightweight Directory Access Protocol

Patch Manager servers use this port for Active Directory authentication.

Dynamic Ports 1024-65536 DCOM or RPC

WMI technology is based on Distributed Component Object Model (DCOM)/RPC communication. DCOM/RPC allocates the ports used by the server within a dynamic port range. This range is typically between 1024 and 65536. To configure these ports using Windows Firewall on your managed computers, enable the Inbound Rules in the Windows Management Instrumentation (WMI) group.

Last modified
01:07, 23 Jun 2016

Tags

Classifications

Public