Ports Used by an Orchestrator

Ports Used by CA Process Automation › Ports Used by an Orchestrator

Ports Used by an Orchestrator

The following tables provide an overview of the ports used for communications, specifically:

Communication from an Orchestrator to another component in a CA Process Automation system
Communication between Orchestrators
Communication to an Orchestrator from another component in a CA Process Automation system

Communication from an Orchestrator to another Component

From	Port	To	Default Listening Port	Protocol	Configuration	Description
Orchestrator	Any	CA EEM	5250	TCP	CA EEM configuration	Used to validate credentials and permissions (authentication and authorization)
Orchestrator	Any	Agent	7003	HTTP/ HTTPS	Specified during agent install or re-install	Deprecated Agent listens on this deprecated port when using the old mode of communication with Orchestrators
Orchestrator	Any	Microsoft SQL Database Server	1433	TCP	Microsoft SQL configured	The database port can be changed in the database server installation; 1433 is the default value.
Orchestrator	Any	MySQL Database Server	3306	TCP	MySQL configured	The database port can be changed in the database server installation; 3306 is the default value.
Orchestrator	Any	Oracle Database Server	1521	TCP	Oracle configured Listener	The database port can be changed during Create Listener; 1521 is the default value for the Oracle Listener port. The database instance can be associated with a different listener. Refer to the Oracle configuration.

Communication between Domain Orchestrator and Non-Domain Orchestrator

From	Port	To	Default Listening Port	Protocol	Configuration	Description
Orchestrator	Any	Non-Domain Orchestrator	7001	HTTP/ HTTPS	OasisConfig.properties	Port used for communication between Orchestrators.
Non-Domain Orchestrator	Any	Domain Orchestrator	8080	TCP	OasisConfig.Properties	Basic Orchestrator to Orchestrator communication
Non-Domain Orchestrator	Any	Domain Orchestrator	8443	TCP	OasisConfig.Properties	Secure Orchestrator to Orchestrator communication
Non-Domain Orchestrator	Any	Domain Orchestrator	80	TCP	OasisConfig.Properties	Basic Orchestrator to Orchestrator communication
Non-Domain Orchestrator	Any	Domain Orchestrator	443	TCP	OasisConfig.Properties	Secure Orchestrator to Orchestrator communication

Communication between Clustered Orchestrator Nodes

From	Port	To	Default Listening Port	Protocol	Configuration	Description
Orchestrator	Any	Orchestrator	1090	TCP	OasisConfig.properties	JBoss Remoting port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	1098	TCP	OasisConfig.properties	JBoss RMI port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	1099	TCP	OasisConfig.properties	JBoss JNDI port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	1100	TCP	OasisConfig.properties	JBoss: HA_Java Naming and Directory Interface is used only between Orchestrators.
Orchestrator	Any	Orchestrator	1101	TCP	OasisConfig.properties	JBoss: HA-Java Remote Method Invocation is used only between Orchestrators.
Orchestrator	Any	Orchestrator	1102	UDP	OasisConfig.properties	JBoss: JNDI Autodiscovery service is used only between Orchestrators.
Orchestrator	Any	Orchestrator	3873	TCP	OasisConfig.properties	JBoss: EJB3 Remoting Connector is used only between Orchestrators.
Orchestrator	Any	Orchestrator	4444	TCP	OasisConfig.properties	JBoss RMI Server port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	4445	TCP	OasisConfig.properties	JBoss Pooled Invoker port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	4446	TCP	OasisConfig.properties	JBoss HA Pooled Invoker port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	4447	TCP	OasisConfig.properties	JBoss HA-RMI Server port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	4448	TCP	OasisConfig.properties	JBoss HA Pooled Invoker port is used only between Orchestrators
Orchestrator	Any	Orchestrator	4457	TCP	OasisConfig.properties	JBoss Messaging port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	4712	TCP	OasisConfig.properties	JBoss Transaction Status Recovery Manager port is used only between Orchestrators
Orchestrator	Any	Orchestrator	4713	TCP	OasisConfig.properties	JBoss Transaction Status Manager port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	7600	TCP	OasisConfig.properties	JBoss clustering port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	7900	TCP	OasisConfig.properties	JBoss clustering port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	7901	TCP	OasisConfig.properties	JBoss clustering port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	8083	TCP	OasisConfig.properties	JBoss RMI WebService port is used only between Orchestrators.
Orchestrator	Any	Orchestrator	61618	TCP	OasisConfig.properties	ActiveMQ messaging subsystem.

Note: CA Process Automation uses JBoss 5.1, which listens on a random set of dynamic ports in the range (49152-65535). The dynamic ports are required for various features, including cluster node communication. If CA Process Automation cannot communicate on these ports, functionality may be severely limited (for example, processes may become stuck).

CA recommends that nothing be placed between cluster nodes that could block communication. If a firewall is required, CA recommends that you open all TCP ports in both directions between the cluster nodes for the java.exe process that is associated with CA Process Automation.

Communication to a Clustered Orchestrator from another Component

From	Port	To	Default Listening Port	Protocol	Configuration	Description
Load Balancer	Any	Orchestrator	8080	HTTP	Oasisconfig.properties	Load Balancer talks to Orchestrator on this port.
Load Balancer	Any	Orchestrator	8443	HTTPS	Oasisconfig.properties	Load Balancer talks to secure Orchestrators on this port.
Load Balancer	Any	Orchestrator	7000	HTTP	node0-config.xml	CA Process Automation Catalyst REST API port
Load Balancer	Any	Orchestrator	7443	HTTPS	node0-config.xml	CA Process Automation Catalyst REST API secure port
Load Balancer	Any	Orchestrator	8009	TCP/AJP	Oasisconfig.properties	Loadbalancer - AJP connector port between Load Balancer and Orchestrator. This port does not apply to NGINX.
Agent	Any	Orchestrator	8080	HTTP	OasisConfig.properties	Deprecated communications only
Agent	Any	Orchestrator	8443	HTTPS	OasisConfig.properties	Deprecated communications only
Agent	Any	Orchestrator	7001	HTTP/ HTTPS	OasisConfig.properties	Deprecated port

Communication to a Non-Clustered Orchestrator from another Component

From	Port	To	Default Listening Port	Protocol	Configuration	Description
Orchestrator	Any	Orchestrator	443	HTTPS	Jetty	Web-socket connection established by agents
Agent	Any	Orchestrator	8080	HTTP	OasisConfig.properties	Deprecated communications only
Agent	Any	Orchestrator	8443	HTTPS	OasisConfig.properties	Deprecated communications only
Agent	Any	Orchestrator	80	HTTP	OasisConfig.properties	Basic Server Port
Agent	Any	Orchestrator	443	HTTPS	OasisConfig.properties	Secure Server Port
Agent	Any	Orchestrator	7001	HTTP/ HTTPS	OasisConfig.properties	Deprecated port
Web Browser (CA Process Automation Web UI user)	Any	Orchestrator	8080	HTTP	OasisConfig.properties	Browser talks to Orchestrator on this port with basic communication.
Web Browser (CA Process Automation Web UI user)	Any	Orchestrator	8443	HTTPS	OasisConfig.properties	Browser talks to secure Orchestrators on this port.
Web Services (SOAP) client	Any	Orchestrator	8080	HTTP	OasisConfig.properties	Orchestrator SOAP API server
Web Services (SOAP) client	Any	Orchestrator	8443	HTTPS	OasisConfig.properties	Orchestrator SOAP API server (secure)