Feb 04 2021 01:58 AM
Hello Everyone,
I'm working on Microsoft Defender for Identity topic, i am at the ports opening part. can you please tell me what is the need to open port 444? for updates are there not automatic updates without opening this port?
Thank you
Feb 04 2021 04:40 AM
@Nawel335
Note that this is only TCP/444 for localhost, in 99% of cases it's open by default.
It is used for communication between the sensor service and the updater service,
and it's not just for automatic updates, the services needs to communicate for more operations, and if it's not working the sensor will fail to start.
Feb 04 2021 05:17 AM
thank you for the reply, on the other hand I will like to know for the port 444 is open from the sensor service to the sensor update service. it's in the cloud or to a URL like '* .atp.azure.com"?
Feb 04 2021 07:01 AM
@Nawel335 \No, it's localhost, internal machine communication between 2 windows services on the machine itself. nothing goes out of the machine via 444.
Mar 04 2021 05:11 PM
Mar 05 2021 02:42 PM
Sep 21 2023 02:16 PM
@EliOfek what about when installing on exchange servers. they use port 444 already. so is there a way to change this?
Sep 21 2023 02:32 PM