The Validation Authority solution adds the following port requirements.
Incoming traffic to Validation Authority
The Entrust Validation Authority deployment automatically opens the following ports for incoming traffic in the firewall of the host machines.
Source | Protocol | Target service | Target port |
|---|---|---|---|
OCSP client | TCP/HTTP | OCSP Responder | 80 |
Outgoing traffic from Validation Authority
The Validation Authority deployment automatically opens the following ports for outgoing traffic in the firewall of the host machines.
You can later modify these ports in the solution configuration, as explained in Configuring and deploying Validation Authority. However, remember to deploy or redeploy Validation Authority after the changes to make them effective and to automatically open the ports.
Source | Protocol | Target service | Target port |
|---|---|---|---|
CRL shim | HTTP | HTTP Server | 80 |
CRL shim | LDAP | LDAP Server | 389 |
CA Gateway shim | TCP/HTTPS | CA Gateway | 8444 |
Status Feeder and OCSP Responder | TCP/HTTPS | SQL Server Database | 1433 |
OCSP Responder | NTLS | Luna Network HSM | 1792 |
Status Feeder and OCSP Responder | TCP/HTTPS | Oracle Database | 1521 |
Status Feeder and OCSP Responder | TCP/HTTPS | PostgreSQL Database | 5432 |
OCSP Responder | TCP/HTTPS | nShield HSM | 9000-9004 |