Needs Ports MDI

Question

Hello Everyone,&nbsp;I'm working on Microsoft Defender for Identity topic, i am at the ports opening part. can you please tell me what is the need to open port 444? for updates are there not automatic updates without opening this port?Thank you

eliofek · Answer

Nawel335&nbsp;Note that this is only TCP/444 for localhost, in 99% of cases it's&nbsp; open by default.It is used for communication between the sensor service and the updater service,&nbsp;
and it's not just for automatic updates, the services needs to communicate for more operations, and if it's not working the sensor will fail to start.

nawel335 · Answer

EliOfek&nbsp;thank you for the reply, on the other hand I will like to know for the port 444&nbsp; is open from the sensor service to the sensor update service. it's in the cloud or to a URL like '* .atp.azure.com"?

eliofek · Answer

Nawel335&nbsp;\No, it's localhost, internal machine communication between 2 windows services on the machine itself. nothing goes out of the machine via 444.

pugazhendhi · Answer

Before installation of DFI/ATP, due we need to check for port 444 open status in server or this port will list after the agent installtion?

eliofek · Answer

It's best to verify it's open before deployment (it should be by default, we added this requirement to the docs because we had a few customers how tend to over harden, and it was blocked for them...)

Forum Discussion

Needs Ports MDI

Share

Resources