MDM Network Ports
Overview
A fully operational MDM setup requires a set of CapaInstaller services that are deployed correctly in the company network infrastructure. Consult the illustration and tables below when setting up your network for CapaInstaller MDM.
Network Ports Reference
The following illustration with referencing tables contains information about network ports used by CapaInstaller Mobile Device Management.
The referenced ports for CapaInstaller services are the default values. If the defaults are changed, refer to the port set in the service configuration.
If you have other isolated LAN zones, for example a separate WIFI zone, port openings for these zones should be the same as the LAN port openings
Services
Service | Port Number | Data Type | Direction | Origin DNS URL if Incoming | Destination DNS URL if Outgoing | Reference |
---|---|---|---|---|---|---|
cimdm | 443 (SSL) | TCP | Public -> DMZ | CapaInstaller DMZ server | 2 B | |
cimdm | 8443 (SSL) OMA DM Protocol | TCP | Public -> DMZ | CapaInstaller DMZ server | 2 B | |
SelfService | 9443 (CapaInstaller SelfService Portal) | TCP | Public -> DMZ | CapaInstaller DMZ server | 2 B | |
cibackend | 5023 (CapaInstaller MDM default) | TCP | DMZ -> LAN | CapaInstaller Backend server | 2 E | |
cifrontend | 5021 (CapaInstaller Frontend Default) | TCP | DMZ -> LAN | CapaInstaller Frontend server | 2 E | |
CapaSystems server | 7000 (CapaSystems server) | TCP | LAN -> Public | 5 D | ||
CapaInstaller frontend service | 80 (HTTP) | TCP | LAN -> Public | 4 D | ||
ciscep | 443 (HTTPS) | TCP | LAN -> Public | https://scep.capaone.com | ||
All devices | 443 (SSL) | TCP | LAN -> Public | * | G |
Service | Port Number | Data Type | Direction | Origin DNS URL if Incoming | Destination DNS URL if Outgoing | Reference |
---|---|---|---|---|---|---|
cimdm | 2195 (Apple server) | TCP | DMZ -> Public | 2 F | ||
cimdm | 2196 (Apple server) | TCP | DMZ -> Public | 2 F |
Service | Port Number | Data Type | Direction | Origin DNS URL if Incoming | Destination DNS URL if Outgoing | Reference |
---|---|---|---|---|---|---|
cimdm | 5228 (Google server) | TCP | DMZ -> Public | 2 F | ||
cimdm | 5229 (Google server) | TCP | DMZ -> Public | 2 F | ||
cimdm | 5230 (Google server) | TCP | DMZ -> Public | 2 F | ||
cimdm | 443 (Google server) | TCP | DMZ -> Public | 2 F |
Services | Port Number | Data Type | Direction | Origin DNS URL if Incoming | Destination DNS URL if Outgoing | Reference |
---|---|---|---|---|---|---|
cimdm | 443 (Microsoft server) | TCP | DMZ -> Public | 2 F | ||
cimdm | 7000 (Capasystems server) | TCP | DMZ -> Public | 5 2 C |
Devices
Devices | Port Number | Data Type | Direction | Origin DNS URL if Incoming | Destination DNS URL if Outgoing | Reference |
---|---|---|---|---|---|---|
All devices | 443 (SSL) | TCP | LAN -> Public | * | G | |
All devices | 8443 | TCP | LAN -> Public | * | G |
Devices | Port Number | Data Type | Direction | Origin DNS URL if Incoming | Destination DNS URL if Outgoing | Reference |
---|---|---|---|---|---|---|
Android devices | 5228 (Google server) | TCP | LAN -> Public | G | ||
Android devices | 5229 (Google server) | TCP | LAN -> Public | G | ||
Android devices | 5230 (Google server) | TCP | LAN -> Public | G | ||
Android devices | 443 (Google server) | TCP | LAN -> Public | G |
Devices | Port Number | Data Type | Direction | Origin DNS URL if Incoming | Destination DNS URL if Outgoing | Reference |
---|---|---|---|---|---|---|
Apple devices | 2195 (Apple server) | TCP | LAN -> Public | G | ||
Apple devices | 2196 (Apple server) | TCP | LAN -> Public | G | ||
Apple devices | 5223 (Apple server) | TCP | LAN -> Public | G |
Devices | Port Number | Data Type | Direction | Origin DNS URL if Incoming | Destination DNS URL if Outgoing | Reference |
---|---|---|---|---|---|---|
Windows Phone devices | 443 (Microsoft server) | TCP | LAN -> Public | G |
https://capawiki.capasystems.com/display/CI56DOC/MDM+Network+Ports
Services and Clients
Description of the components from the illustration and reference tables