The table below lists the ports that must be open on the device where Kaspersky Security Center Web Console Server (also referred to as Kaspersky Security Center Web Console) is installed.
Ports used by Kaspersky Security Center Web Console
Port number |
Service name |
Protocol |
Port purpose |
Scope |
---|---|---|---|---|
2001 |
Kaspersky Security Center Product Plugins Server
|
HTTPS |
API port that is used by the management plug-in processes to receive requests from the "Kaspersky Security Center Web Console Management Service" |
Running node.exe processes of management plug-ins
|
1329, 2003 |
Kaspersky Security Center Web Console Management Service
|
HTTPS |
API ports that are used to receive requests from the "Kaspersky Security Center Web Console Management Service" running on the same device |
Updating Kaspersky Security Center Web Console components
|
2005 |
Kaspersky Security Center Web Console
|
HTTPS |
API port that is used to receive requests from the "Kaspersky Security Center Web Console Management Service" running on the same device |
Running node.exe processes of Kaspersky Security Center Web Console
|
3333 |
Kaspersky OSMP KAS Service |
HTTPS |
OAuth2.0 authorization endpoint port |
Identity and Access Manager |
4004 |
Kaspersky OSMP Facade Service |
HTTPS |
OAuth2.0 identity provider port |
Identity and Access Manager |
4444 |
Kaspersky OSMP KAS Service |
HTTPS |
OAuth2.0 Token introspection endpoint port |
Identity and Access Manager |
8200 |
HTTP |
API port that is used to generate certificates by means of HashiCorp Vault (for more details, see the HashiCorp Vault website) |
Installing Kaspersky Security Center Web Console and updating Kaspersky Security Center Web Console components |
|
4150, 4151, 4152 |
Kaspersky Security Center Web Console Message Queue |
HTTPS |
API ports of the Message Broker that are used for communication between processes of both Kaspersky Security Center Web Console and management plug-ins |
Interaction between Kaspersky Security Center Web Console and management plug-ins |
The table below lists the ports that do not have to be open on the device where Kaspersky Security Center Web Console Server is installed. However, Kaspersky Security Center Web Console uses these ports for Identity and Access Manager.
Ports used by Kaspersky Security Center Web Console for Identity and Access Manager
Port number |
Service name |
Protocol |
Port purpose |
Scope |
---|---|---|---|---|
4445 |
Kaspersky OSMP KAS Service |
HTTPS |
Main Identity and Access Manager port that receives configuration from Kaspersky Security Center Web Console for OAuth2.0 authorization endpoint port (for more information about OAuth 2.0, see the OAuth website) |
Identity and Access Manager |
2444 |
Kaspersky OSMP Facade Service |
HTTPS |
Port for the configuration of Identity and Access Manager |
Identity and Access Manager |
2445 |
Kaspersky OSMP Facade Service |
HTTPS |
Port for the connection of "Kaspersky OSMP KAS Service" to "Kaspersky OSMP Facade Service" |
Identity and Access Manager |