FortiAuthenticator Open Ports

Leave a reply

FortiAuthenticator Open Ports

Outgoing Ports

Purpose

 Protocol/Port
FortiGate RADIUS UDP/1812
FSSO TCP/8000
FortiGuard AV/IPS Updates TCP/443
Virus Sample TCP/25
SMS, FTM, Licensing, Policy Override Authentication, URL/AS Updates TCP/443
Registration TCP/80

FortiAuthenticator Open Ports

Incoming Ports

Purpose

 Protocol/Port
Others SSH CLI TCP/22
Telnet TCP/23
HTTP & SCEP TCP/80
SNMP Poll UDP/161
Web Admin TCP/80, TCP/443
LDAP TCP/389
LDAPS TCP/636
RADIUS UDP/1812, UDP/1813
OCSP TCP/2560
3rd-Party Servers FSSO & Tiers TCP/8002, TCP/8003

 

FortiAuthenticator Open Ports

Outgoing Ports

Purpose

 Protocol/Port
3rd-Party Servers SMTP, Alerts, Virus Sample TCP/25
DNS UDP/52
Windows AD TCP/88
NTP UDP/123
LDAP TCP or UDP389
Domain Control TCP/445
LDAPS TCP/636
FSSO & Tiers TCP/8002, TCP/8003

 

Outgoing Ports

Purpose

 Protocol/Port
FortiAnalyzer Syslog UDP/514
FortiAuthenticator SSO Mobility Agent, FSSO TCP/8001
FortiGate VPN Settings TCP/8900
Policy Override Authentication TCP/8010
Explicit Proxy TCP/8080
FortiGuard AV Update & Registration TCP/80
URL/AS Rating, DNS, FDN, FortiGuard Queries UDP/53, UDP/8888
FortiManager FortiGuard Queries UDP/53, UDP/8888
This entry was posted in FortiAuthenticator on by .

About Mike

Michael Pruett, CISSP has a wide range of cyber-security and network engineering expertise. The plethora of vendors that resell hardware but have zero engineering knowledge resulting in the wrong hardware or configuration being deployed is a major pet peeve of Michael's. This site was started in an effort to spread information while providing the option of quality consulting services at a much lower price than Fortinet Professional Services. Owns PacketLlama.Com (Fortinet Hardware Sales) and Office Of The CISO, LLC (Cybersecurity consulting firm).

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.