Nexus Documentation
CURL vulnerability information (CVE-2023-38545) - Nexus awareness advisory on Microsoft's update KB5014754

Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

This article describes the default ports that are used in a Smart ID Certificate Manager (CM) installation. 

The ports, as well as related keystores and truststores, are configured in server.xml.


Firewall Interface

From

To

Listening Port

Protocol and Comment

Internal
(or External)		CM clientsCertificate FactoryTCP 5009

Internal port for the CM clients to communicate with Certificate Factory (CF). It is set in the default configuration of the CM clients and CF. 

If a firewall needs to be opened then it is thus for port 5009. If the port is changed in the CF configuration, the connection from the client must specify the same port.

ExternalClient toward Protocol Gateway

Protocol Gateway

TCP 8443

External TLS communication between a Protocol Gateway endpoint and client, without client certificate authentication. 

ExternalClient toward Protocol Gateway

Protocol Gateway

TCP 8444

External TLS communication between a Protocol Gateway endpoint and client, with client certificate authentication. 

ExternalClient toward Protocol Gateway

Protocol Gateway

TCP 8080

External communication without TLS between a Protocol Gateway endpoint and client. 

If 8080 receives a request that requires TLS transport, it will be redirected to 8443.

Related information


  • No labels

Copyright 2024 Technology Nexus Secured Business Solutions AB. All rights reserved.
Contact Nexus | https://www.nexusgroup.com | Disclaimer | Terms & Conditions