Contents:
Administration Service is separated by a firewall from on-premises services
Note: Cayosoft Administrator Service doesn't use 636 and 3269 SSL ports.
Ports required to manage Active Directory
Type | Port* | Source | Target | Purpose |
---|---|---|---|---|
TCP |
389 |
Computer where Cayosoft Administrator is installed |
Domain Controllers |
LDAP Common queries
|
TCP |
3268 |
Computer where Cayosoft Administrator is installed |
Domain Controllers |
LDAP Global Catalogue search
|
TCP |
9389 |
Computer where Cayosoft Administrator is installed | The Active Directory Domain Controller (DC) that is running the Active Directory Web Services (ADWS). |
Active Directory Web Service (ADWS) |
TCP |
135/445 |
Computer where Cayosoft Administrator is installed |
Domain Controller |
RPC |
TCP/UDP |
88 |
Cayosoft Administrator server or the client machine that is trying to authenticate or communicate with other services. |
Key Distribution Center (KDC), which is usually running on the Active Directory Domain Controller (DC). |
Kerberos Authentication |
Ports required to manage Exchange Server
Type | Port | Source | Target | Purpose |
---|---|---|---|---|
TCP |
443 |
Сomputer where Cayosoft Administrator is installed |
Exchange Server |
HTTPS |
TCP |
80 |
Exchange Server |
PowerShell connections Learn more in: Connect to Exchange servers using remote PowerShell - Microsoft |
|
TCP |
5985/5986 |
The Exchange Server where the WinRM service is running. |
WinRM (Windows Remote Management)
Learn more in Troubleshooting Cayosoft Administrator Active Directory DC Connection Issues |
Ports required to manage the Home folder Server or other computer resources
Type | Port | Source | Target | Description |
---|---|---|---|---|
TCP |
139 / 135 |
Computer where Cayosoft Administrator is installed |
The remote computer or server where the shared resources are located. |
NETBIOS Sessions |
TCP |
445 |
Computer where Cayosoft Administrator is installed | Windows File Servers or SMB/CIFS Shares |
File Sharing and Management |
Administration Service is separated by a firewall from the Internet
Note: Cayosoft Administrator uses TPC ports 443/80 and UDP port 443.
Ports and endpoints required for product installation and update
Required/Optional | Service | Addresses | Notes |
---|---|---|---|
Required |
Web Portal Configuration |
Refer to the Microsoft Docs article Connection endpoints for Windows 11 Enterprise - Windows Privacy | Microsoft Learn, section Windows Update. |
During installation and updates, the Cayosoft Administrator Service configures essential system features and components, such as Internet Information Services (IIS), using the Microsoft Windows Deployment Image Servicing and Management (DISM) tool. This ensures that all necessary dependencies are installed and maintained automatically, enabling seamless functionality across various system operations and updates. |
Required |
PowerShell Modules Installation and Update |
Refer to the Microsoft Docs article Troubleshooting cmdlets - PowerShell | Microsoft Learn, section Required network endpoints. | During installation, updates, and when enabling extensions that rely on specific PowerShell modules, the Cayosoft Administration Service automatically deploys or updates these modules from the PowerShell Gallery. This ensures that all required modules are available and up-to-date, allowing seamless integration and functionality for features dependent on these PowerShell components. |
Optional |
SharePoint client object model (CSOM) Installation and Update |
Refer to the Microsoft Docs article Overview of the NuGet Server API | Microsoft Learn, section Service index. | This endpoint is required only if the customer plans to enable the Connect to SharePoint Online service option in the Microsoft 365 extension settings by setting it to Yes. For more details on configuring this option, please refer to the Microsoft 365 extension settings documentation in the Cayosoft Help Center |
Ports and endpoints required for Cayosoft Cloud Services
Required/Optional | Service | Addresses | Notes |
---|---|---|---|
Required* |
License Service |
api.telemetry.cayosoft.com |
For detailed information about the License Service and its role in product activation and subscription management, please refer to the following article: Cayosoft Administrator Offline Activation *For offline product activation, please contact Cayosoft Support or your Sales representative. |
Optional | Telemetry |
api.telemetry.cayosoft.com centralus-0.in.applicationinsights.azure.com cayo-sfr.azurewebsites.net |
Cayosoft Administrator includes optional telemetry that collects diagnostic data to help improve product performance, security, and functionality. This data is used to gain insights into product usage patterns and address potential issues. For more information, see Optional Diagnostic Data – Cayosoft Help Center. |
Optional |
Check and Download Product Updates |
cayotsprodadmin.azurewebsites.net cdn-cayotsprodadmin.azureedge.net cayotsprodadmin.blob.core.windows.net |
Cayosoft Administrator offers an in-product update feature, allowing administrators to download and apply product or extension pack updates directly from the cloud. This feature ensures that your system stays up-to-date with the latest enhancements and fixes without the need for manual downloads. For details, see Update product or extension pack from the cloud – Cayosoft Help Center. |
Optional |
Entra ID Sign-in in Administration Console | cayo-signinredirect.azurewebsites.net | This endpoint is required only when signing in to the Cayosoft Administration Console with an Entra ID account. It is not used for Entra ID SSO within the Web Portal. |
Ports and endpoints required for communication with Microsoft Cloud Services
This section lists ports and endpoints required for Exchange Online, SharePoint Online, OneDrive for Business, Microsoft Teams, Microsoft Common and Office Online, and Microsoft Graph.
Important! The ports and endpoints specified are required only if the Microsoft 365 extension is enabled in Cayosoft Administrator. If you are not using the Microsoft 365 extension, there is no need to open or configure these settings.
Required/Optional | Service | Addresses | Notes |
---|---|---|---|
Required |
|
Refer to the Microsoft Docs article Microsoft 365 URLs and IP address ranges - Microsoft 365 Enterprise | Microsoft Learn, or Microsoft 365 U.S. Government GCC High endpoints - Microsoft 365 Enterprise | Microsoft Learn, depending on the type of Microsoft 365 environment to manage. |
Ports and endpoints required for communication with Okta
Important! The ports and endpoints specified are required only if the Okta extension is enabled in Cayosoft Administrator. If you are not using the Okta extension, you do not need to open or configure these settings.
Required/Optional | Service | Addresses | Notes |
---|---|---|---|
Required |
Okta |
For additional information, review the following article: Advanced Server Access port requirements | Okta. |
Ports and endpoints required for communication with Google Apps
Important! The ports and endpoints specified are required only if the Google Apps extension is enabled in Cayosoft Administrator. If you are not using the Google Apps extension, there is no need to open or configure these settings.
Required/Optional | Service | Addresses | Notes |
---|---|---|---|
Required |
Google Apps |
For additional information, review the following article: Drive and Sites firewall and proxy settings | Google Workspace Admin Help. |
Workday HR
Required/Optional | Service | Addresses | Notes |
---|---|---|---|
Required | Workday HR |
Cayosoft Administrator should be configured to access Workday services with a general endpoint pattern using wildcards:
|
Clients separated by a firewall from the Administration Service
The following ports must be opened if a firewall separates the Administrator Console or Web Portal and the Cayosoft Administrator Service.
Component | Type | Port | Source | Target | Purpose |
---|---|---|---|---|---|
Cayosoft Remote Console |
TCP |
443 |
Remote console client host |
Cayosoft Administrator host |
.NET Framework Windows Communication Foundation (WCF) |
Publisher Subscriber Replication |
TCP |
7800 |
Replication partner host | Replication partner host |
.NET Framework Windows Communication Foundation (WCF) |
Public API |
TCP |
7801, 7802, 7803 |
Source Public API client |
Cayosoft Administrator host |
OAuth, Odata |
Related Articles
Ports required for Guardian Service
Comments
0 comments
Please sign in to leave a comment.