Advanced prerequisites
Flow | Client | Server | Protocol | IP Protocol | Port | Customizable (Y/N)? | Optional (Y/N)? | Comments |
F1 | Workstation with a UserLock agent | UserLock Server (Primary or Backup) | Ping | ICMP | close | Required | ||
F2 | Workstation with a UserLock agent | UserLock Server (Primary or Backup) | SMB | TCP | 445 | close | Required | |
F3 | UserLock Server (Primary or Backup) | Computer with a UserLock agent | Ping | ICMP | close | Required | ||
F4 | UserLock Server (Primary or Backup) | Computer with a UserLock agent | SMB | TCP | 445 | close | Required | |
F5 | Administrator workstation with remote administration console | UserLock Server (Primary or Backup) | SMB | TCP | 445 | close | Optional | Remote console |
F6 | Administrator workstation | UserLock Server (Primary or Backup) | http/https | TCP | 80/443 | check_circle | Optional | Web Console |
F7 | UserLock Server (Primary or Backup) | Domain Controllers | SMB | TCP | 445 | close | Required | |
F8 | UserLock Server (Primary or Backup) | Domain Controllers | LDAP | TCP | 389 | close | Required | |
F9 | UserLock Server (Primary or Backup) | Global Catalog | LDAP | TCP | 3268 | close | Required | |
F10 | UserLock Server (Primary or Backup) | SQL Server | SQL server | TCP | 1433 (only if default instance) | check_circle | Optional | |
F11 | Administrator workstation with remote administration console | SQL server | SQL server | TCP | 1433 (only if default instance) | check_circle | Optional | Remote console |
F12 | UserLock Server (Primary) | UserLock Server (Backup) | SMB | TCP | 445 | close | Required | |
F13 | UserLock Server (Backup) | UserLock Server (Primary) | SMB | TCP | 445 | close | Required | |
F14 | UserLock Server (Primary or Backup) | Computer with a UserLock agent | Wake on Lan | UDP | 7 | close | Optional | Broadcasts must be allowed on routers |
F15 | UserLock Anywhere | UserLock Server (Primary or Backup) | SMB | TCP | 445 | close | Required | |
F16 | UserLock Anywhere | Domain Controllers | close | Required | * | |||
F17 | UserLock Anywhere | Global Catalog | close | Required | * | |||
F18 | UserLock SSO | UserLock Server (Primary or Backup) | SMB | TCP | 445 | close | Required | |
F19 | UserLock SSO | Domain Controllers | LDAP | TCP | 389 | close | Required | |
F20 | UserLock SSO | Global Catalog | LDAP | TCP | 3268 | close | Required | |
F18 | UserLock MFA IIS | UserLock Server (Primary or Backup) | SMB | TCP | 445 | close | Required | |
F19 | UserLock MFA IIS | Domain Controllers | LDAP | TCP | 389 | close | Required | |
F20 | UserLock MFA IIS | Global Catalog | LDAP | TCP | 3268 | close | Required |
For more information: Configure firewall for AD domain and trusts - Windows Server | Microsoft Learn