What are the right ports for CPPM to AD

last person joined: yesterday

Forum to discuss Enterprise security using HPE Aruba Networking NAC solutions (ClearPass), Introspect, VIA, 360 Security Exchange, Extensions, and Policy Enforcement Firewall (PEF).

Back to discussions

Expand all | Collapse all

What are the right ports for CPPM to AD

This thread has been viewed 0 times

1. What are the right ports for CPPM to AD

0 Kudos
bcrawfo2
Posted Jul 28, 2014 03:56 PM

Reply Reply Privately
I observed the following using packet captures:
udp53
icmp-echoreq
udp389
tcp389
Tcp445
tcp139
tcp88
udp88
tcp 636

Other posts have this;
http://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/Clearpass-cluster-traffic-firewall/td-p/59360

They are different...and different makes firewall people squirm.
Also...they are very hot on removing the 389, 139, etc ports. Any comments on removing ports after the domain join and switch to SLDAP?
2. RE: What are the right ports for CPPM to AD

1 Kudos
Victor Fabian
Posted Jul 28, 2014 04:54 PM

Reply Reply Privately
https://arubanetworkskb.secure.force.com/pkb/articles/FAQ/What-are-the-ports-that-need-to-be-opened-on-the-network-firewall-for-ClearPass-Policy-Manager-CPPM-to-function-smoothly
3. RE: What are the right ports for CPPM to AD

0 Kudos
bcrawfo2
Posted Jul 29, 2014 04:20 PM

Reply Reply Privately
Thanks Victor.

Anyone willing to comment on tightening those ports after the join and switch to SLDAP?

Security

What are the right ports for CPPM to AD

1. What are the right ports for CPPM to AD

2. RE: What are the right ports for CPPM to AD

3. RE: What are the right ports for CPPM to AD