In version 3.2, the Administration Console, Identity Server, and SSL VPN run in separate instances of tomcat. By default, each component's tomcat uses ports 8080 (http) and 8443 (https). Installing multiple components on the same server can cause a port conflict. To avoid this conflict, each component is assigned a unique port number on which the device can listen.
If a component is installed on a dedicated server no port changes are required. By default, the http port is 8080 and the https port is 8443.
The browser requests made to ports 8080/8443 are automatically redirected to the port on which the component is listening. Depending on the configuration, you must open ports 2080, 2443, and 3443 in the firewall.
The following table describes the ports for all the components of Access Manager:
Configuration |
Identity Server |
Administration Console |
SSL VPN |
---|---|---|---|
Access Gateway + SSL VPN |
NA |
NA |
8080/8443 |
Administration Console + SSL VPN |
NA |
2080/2443 |
8080/8443 |
Administration Console only |
NA |
8080/8443 |
NA |
Identity Server + Administration Console |
8080/8443 |
2080/2443 |
NA |
Identity Server + Administration Console + SSL VPN |
8080/8443 |
2080/2443 |
3080/3443 |
Identity Server + SSL VPN |
8080/8443 |
NA |
3080/3443 |
Identity Server only |
8080/8443 |
NA |
NA |
SSL VPN only |
NA |
NA |
8080/8443 |