How to Configure a Windows Firewall for SAM
Valid on Windows Agentless endpoints
The SAM Windows Agentless connector uses port 135 (the DCOM port) to connect to Windows Agentless endpoints. After the connector connects to the endpoint, it uses a dynamic port (above 1000) for communication with the WMI (Windows Management Instrumentation) service.
If the Windows firewall is enabled, you must configure the firewall so that the SAM Windows Agentless connector can connect to the endpoint. If you do not configure the firewall, the Enterprise Management Server cannot communicate with the endpoint.
To configure a Windows firewall for SAM, do as follows:
Use the information in the following examples to help you configure the Windows firewall.
Example: Open Port 135
The following example shows you how to open port 135 on a Windows Server 2008 computer.
The Windows Firewall dialog appears.
The Windows Firewall Settings dialog appears.
The Add a Port dialog appears.
Click OK.
The DCOM_TCP135 rule appears in the Exceptions tab.
The Windows Firewall Settings dialog closes. You have opened port 135.
Example: Create a Firewall Rule That Permits Traffic Arriving to the WMI Service from Dynamic RPC Ports
The following example shows you how to create a firewall rule on a Windows Server 2008 computer. The firewall rule permits traffic arriving to the WMI service from dynamic RPC ports.
The Windows Firewall with Advanced Security dialog opens.
The New Inbound Rule Wizard appears.
The Customize Service Settings dialog opens.
The IP Address dialog appears.
After complete the wizard, you have created a firewall rule so that the firewall permits any traffic arriving to the WMI service from dynamic RPC ports.
Copyright © 2013 CA Technologies.
All rights reserved.
|
|