Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1292
Views
5
Helpful
1
Replies

Firepower User Agent Communicating Ports on AD Firewall

Go to solution
kostasthedelegate
Level 4
Level 4

‎02-22-2021 12:32 AM

Hello, 

 

Is there a guide that states the ports that need to be open in order for the user agent to communicate with an AD controller.

 

I am interested in the firewall of the server. 

 

Tanks and regards, 

Konstantinos

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎02-22-2021 01:17 AM

@kostasthedelegate 

There isn't much information...but it looks like TCP/135 (used by DCOM) is required to each DC. I'd suggest taking a packet capture or running netstat on the DC and double checking the communication ports.

 

Bear in mind, the Firepower User Agent is EOL and not supported in FMC from version 6.7. Recommendation to migrate to ISE or ISE-PIC.

 

https://www.cisco.com/c/en/us/td/docs/security/firesight/user-agent/24/config-guide/Firepower-User-Agent-Configuration-Guide-v2-4/Intro.html#56246

View solution in original post

1 Reply 1

Go to solution
Rob Ingram
VIP
VIP

‎02-22-2021 01:17 AM

@kostasthedelegate 

There isn't much information...but it looks like TCP/135 (used by DCOM) is required to each DC. I'd suggest taking a packet capture or running netstat on the DC and double checking the communication ports.

 

Bear in mind, the Firepower User Agent is EOL and not supported in FMC from version 6.7. Recommendation to migrate to ISE or ISE-PIC.

 

https://www.cisco.com/c/en/us/td/docs/security/firesight/user-agent/24/config-guide/Firepower-User-Agent-Configuration-Guide-v2-4/Intro.html#56246

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card