Ports Used

The software uses a number of ports by default.

Default ports are shown in the following table:

Default Ports Used
Port NumberProtocolDescription
1689TCP/IPPort for Java Management eXtension traffic, disabled by default
1812UDPPort for AM's RADIUS server, disabled by default
4444TCP/IPPort for the embedded administration connector, enabled by default.
8080TCP/IPWeb application container port number
8082TCP/IPHTTP port for monitoring AM, disabled by default
8085TCP/IPSNMP port for monitoring AM, disabled by default
9999TCP/IPRMI port for monitoring AM, disabled by default.
50389, 50899, 58989TCP/IPSupports LDAP communication between embedded AM data stores.

Sometimes multiple services are configured on a single system with slightly different port numbers. For example, while the default port number for a servlet container such as Tomcat is 8080, a second instance of Tomcat might be configured with a port number of 18080. In all cases shown, communications proceed using the protocol shown in the table.

When you configure a firewall for AM, make sure to include open ports for any installed and related components, including web services (80, 443), servlet containers (8009, 8080, 8443), and external applications.

Additional ports may be used, depending on other components of your deployment. If you are using external DS servers, refer to the Administrative Access section of the ForgeRock Directory Services Security Guide.

Read a different version of :