Azure ATP Sensor- Pré requisites

Copper Contributor

Hello everybody
I am in an azure atp project and I have some doubts regarding Sensor ATP installation.
I am using a lot of microsoft documentation and found on this page the requirements to enable the firewall -
Enable access to Azure ATP service URLs on proxy server
To enable Azure ATP access, allow traffic to the following URLs:
<your-instance-name> - for console connectivity. For example, ""
<your-instance name> - for sensor connectivity. For example, ""
Previous URLs are automatically mapped to the correct service location of the Azure ATP instance. If you need more granular control, consider allowing traffic to the relevant endpoints in the following table:
Service Location DNS Registration *





These rules have to be inbound and outbound? - because we're talking about Domain Controllers and would have a problem that they would be exposed to. Could I just release outbound ??


if not, why? I would like to have more arguments to present to the firewall team.



1 Reply
best response confirmed by Valdoscarin (Copper Contributor)

@Valdoscarin , outbound connections only to the internet. the sensor won't accept connections from outside of local machine.