In addition to the ports listed in Required open ports, ensure no network restriction blocks access to the following ports.
Incoming traffic to Entrust Validation Authority
The Entrust Validation Authority deployment automatically opens the following ports for incoming traffic in the firewall of the host machines.
Target Port | Protocol | Source | Target Service |
|---|---|---|---|
80 | TCP/HTTP | OCSP client | OCSP Responder |
Outgoing traffic from Entrust Validation Authority
The Entrust Validation Authority deployment automatically opens the following ports for outgoing traffic in the firewall of the host machines.
You can later modify these ports in the solution configuration, as explained in Configuring and deploying Entrust Validation Authority. However, remember to deploy or redeploy Entrust Validation Authority after the changes to make them effective and to automatically open the ports.
Target Port | Protocol | Source | Target Service |
|---|---|---|---|
80 | HTTP | CRL shim | HTTP Server |
389 | LDAP | CRL shim | LDAP Server |
8444 | TCP/HTTPS | CA Gateway shim | CA Gateway |
1433 | TCP/HTTPS | Status Feeder and OCSP Responder | SQL Server Database |
1792 | NTLS | OCSP Responder | Luna Network HSM |
1521 | TCP/HTTPS | Status Feeder and OCSP Responder | Oracle Database |
5432 | TCP/HTTPS | Status Feeder and OCSP Responder | PostgreSQL Database |
9000-9004 | TCP/HTTPS | OCSP Responder | nShield HSM |