000012386 - What ports need to be open between RSA FIM and RSA Access Manager

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000012386
Applies ToRSA Federated Identity Manager (FIM) 2.6
ClearTrust 5.5.3
ClearTrust Access Manager 6.0
RSA Federated Identify Manger (FIM) 4.0
IssueWhat ports need to be open between RSA FIM and RSA Access Manager
CauseHow to configure a firewall to open ports for RSA FIM.
Resolution

Refer to the diagram on page 25 of the RSA Access Manager 6.0 planning guide.  It lists all the ports for Access Manager.  For the purposes of RSA FIM, you can consider it an Agent that also does Administrative functions.

This means it requires ports 5615, and 5608 (port 5606 is deprecated, it is no longer used by newer agents) which are the standard ports used by agents, as well as port 5601 which is used by Admin API clients.  If FIM contains plugins that does external lookups, you may need to open additional ports for the specific plugin itself.   The ports for the datastore depends on the datastore type and configuration, but it would typically be 1433 for MSSQL, 1521 for Oracle and 389 for LDAP (or 636 for LDAP over SSL).

Legacy Article IDa44149

Attachments

    Outcomes