cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Needs Ports MDI

Nawel335
Copper Contributor

‎Feb 04 2021 01:58 AM

‎Feb 04 2021 01:58 AM

Needs Ports MDI

Hello Everyone,

 

I'm working on Microsoft Defender for Identity topic, i am at the ports opening part. can you please tell me what is the need to open port 444? for updates are there not automatic updates without opening this port?
Thank you

2,455 Views
1 Like
7 Replies
Reply
7 Replies
Eli Ofek

‎Feb 04 2021 04:40 AM

‎Feb 04 2021 04:40 AM

Re: Needs Ports MDI

@Nawel335 
Note that this is only TCP/444 for localhost, in 99% of cases it's  open by default.
It is used for communication between the sensor service and the updater service, 

and it's not just for automatic updates, the services needs to communicate for more operations, and if it's not working the sensor will fail to start.

0 Likes
Reply
Nawel335

‎Feb 04 2021 05:17 AM

‎Feb 04 2021 05:17 AM

Re: Needs Ports MDI

@Eli Ofek 

thank you for the reply, on the other hand I will like to know for the port 444  is open from the sensor service to the sensor update service. it's in the cloud or to a URL like '* .atp.azure.com"?

0 Likes
Reply
Eli Ofek

‎Feb 04 2021 07:01 AM

‎Feb 04 2021 07:01 AM

Re: Needs Ports MDI

@Nawel335 \No, it's localhost, internal machine communication between 2 windows services on the machine itself. nothing goes out of the machine via 444.

0 Likes
Reply
pugazhendhi

‎Mar 04 2021 05:11 PM

‎Mar 04 2021 05:11 PM

Re: Needs Ports MDI

Before installation of DFI/ATP, due we need to check for port 444 open status in server or this port will list after the agent installtion?
0 Likes
Reply
Eli Ofek

‎Mar 05 2021 02:42 PM

‎Mar 05 2021 02:42 PM

Re: Needs Ports MDI

It's best to verify it's open before deployment (it should be by default, we added this requirement to the docs because we had a few customers how tend to over harden, and it was blocked for them...)
0 Likes
Reply
gkjarhead

‎Sep 21 2023 02:16 PM

‎Sep 21 2023 02:16 PM

Re: Needs Ports MDI

@Eli Ofek what about when installing on exchange servers. they use port 444 already. so is there a way to change this?

0 Likes
Reply
Eli Ofek

‎Sep 21 2023 02:32 PM

‎Sep 21 2023 02:32 PM

Re: Needs Ports MDI

MDI sensor was not designed to be used on Exchange servers, not just because of port 444,
Simply because it wouldn't know how to monitor it.
There is no reason to install it on Exchange machines.
0 Likes
Reply