Advanced prerequisites
| Flow | Client | Server | Protocol | IP Protocol | Port | Customizable (Y/N)? | Optional (Y/N)? | Comments |
| F1 | Workstation with a UserLock agent | UserLock Server (Primary or Backup) | Ping | ICMP | close | Required | ||
| F2 | Workstation with a UserLock agent | UserLock Server (Primary or Backup) | SMB | TCP | 445 | close | Required | |
| F3 | UserLock Server (Primary or Backup) | Computer with a UserLock agent | Ping | ICMP | close | Required | ||
| F4 | UserLock Server (Primary or Backup) | Computer with a UserLock agent | SMB | TCP | 445 | close | Required | |
| F5 | Administrator workstation with remote administration console | UserLock Server (Primary or Backup) | SMB | TCP | 445 | close | Optional | Remote console |
| F6 | Administrator workstation | UserLock Server (Primary or Backup) | http/https | TCP | 80/443 | check_circle | Optional | Web Console |
| F7 | UserLock Server (Primary or Backup) | Domain Controllers | SMB | TCP | 445 | close | Required | |
| F8 | UserLock Server (Primary or Backup) | Domain Controllers | LDAP | TCP | 389 | close | Required | |
| F9 | UserLock Server (Primary or Backup) | Global Catalog | LDAP | TCP | 3268 | close | Required | |
| F10 | UserLock Server (Primary or Backup) | SQL Server | SQL server | TCP | 1433 (only if default instance) | check_circle | Optional | |
| F11 | Administrator workstation with remote administration console | SQL server | SQL server | TCP | 1433 (only if default instance) | check_circle | Optional | Remote console |
| F12 | UserLock Server (Primary) | UserLock Server (Backup) | SMB | TCP | 445 | close | Required | |
| F13 | UserLock Server (Backup) | UserLock Server (Primary) | SMB | TCP | 445 | close | Required | |
| F14 | UserLock Server (Primary or Backup) | Computer with a UserLock agent | Wake on Lan | UDP | 7 | close | Optional | Broadcasts must be allowed on routers |
| F15 | UserLock Anywhere | UserLock Server (Primary or Backup) | SMB | TCP | 445 | close | Required | |
| F16 | UserLock Anywhere | Domain Controllers | close | Required | * | |||
| F17 | UserLock Anywhere | Global Catalog | close | Required | * | |||
| F18 | UserLock SSO | UserLock Server (Primary or Backup) | SMB | TCP | 445 | close | Required | |
| F19 | UserLock SSO | Domain Controllers | LDAP | TCP | 389 | close | Required | |
| F20 | UserLock SSO | Global Catalog | LDAP | TCP | 3268 | close | Required | |
| F18 | UserLock MFA IIS | UserLock Server (Primary or Backup) | SMB | TCP | 445 | close | Required | |
| F19 | UserLock MFA IIS | Domain Controllers | LDAP | TCP | 389 | close | Required | |
| F20 | UserLock MFA IIS | Global Catalog | LDAP | TCP | 3268 | close | Required |
For more information: Configure firewall for AD domain and trusts - Windows Server | Microsoft Learn