Hosts GS: Step 3: Review SSL Ports for Trusted Connections

Document created by RSA Information Design and Development on Jul 27, 2016Last modified by RSA Information Design and Development on Jul 27, 2016
Version 2Show Document
  • View in full screen mode
 

To support trusted connections each core service has two ports, an unencrypted non-SSL port and an encrypted SSL port. Trusted connections require the encrypted SSL port. 

Prerequisite

To establish a trusted connection, each Security Analytics Core service must be upgraded to 10.4 or later. Trusted connections are not backwards compatible with Security Analytics Core 10.3.x or earlier. 

Encrypted SSL Ports

When you install or upgrade to 10.4 or later, trusted connections are established by default with two settings:

  1. SSL is enabled.
  2. The core service is connected to an encrypted SSL port.

Each Security Analytics Core service has two ports:

  • Encrypted non-SSL port
    Example:  Archiver 50008

  • Unencrypted SSL port
    Example:  Archiver 56008

The SSL port is the non-SSL port + 6000.

The following table lists all Security Analytics services with their respective ports and shows that each core service has two ports. All port numbers listed are TCP.

                                                                              
ServiceUnencrypted
Non-SSL Port
Encrypted 
SSL Port
Archiver5000856008
Broker5000356003
Concentrator5000556005
Decoder5000456004
Event Stream Analysis50030N/A
Incident Management50040N/A
IPDB Extractor5002556025
Log Collector5000156001
Log Decoder5000256002
Malware Analysis60007N/A
Reporting Engine51113N/A
Warehouse Connector5002056020
Workbench5000756007
You are here: Required Procedures > Step 3: Review SSL Ports for Trusted Connections

Attachments

    Outcomes