Port Requirements between Web Server+Web Console and Active Directory

Last post 08-13-2018, 8:35 AM by omer. 6 replies.
Sort Posts: Previous Next
  • Port Requirements between Web Server+Web Console and Active Directory
    Posted: 08-09-2018, 4:57 AM

    Hello All,

     

    We are doing tests for laptop backups.

    During these tests, we installed a Web Server+Web Console in the DMZ.

    We added Domain to CommCell Console and enabled SSO.

    The users are not able to login to Web Console with SSO and their information on Active Directory. Because it is Firewall between Web Console and Active Directory.

    There are 88, 123, 464, 636 ports in the document. Do all of these ports need to be opened?

    Or which ports need to be opened correctly?

     

    Thanks a lot.

    Best Regards.

  • Re: Port Requirements between Web Server+Web Console and Active Directory
    Posted: 08-10-2018, 8:38 AM

    Hello,

    You should install the web server in the internal network and only the webconsole in the DMZ. Then configure the CV firewall with e.g. port 8403 between web console and web server.

    Best regards.

  • Re: Port Requirements between Web Server+Web Console and Active Directory
    Posted: 08-10-2018, 10:37 AM

    Hello tgabold,

    Thank you for your answer.

    There are Web Server and Web Console in the internal network. Also, there are Web Server and Web Console in the DMZ.

    If Web Console will be removed in the internal network and Web Server will be removed in the DMZ, does it cause some issues in the environment?

    Best Regards.

  • Re: Port Requirements between Web Server+Web Console and Active Directory
    Posted: 08-13-2018, 2:05 AM

    Hello Omer,

    The web console url should be the same for internal and external users and must be reachable internal and external (e.g. with split DNS). This is the only thing you have to take care. It should also be enough to configure the firewall or a proxy to forward the requests to the internal web console.

    Other Example: http://documentation.commvault.com/commvault/v11/article?p=7428.htm

    Regards, Thomas

  • Re: Port Requirements between Web Server+Web Console and Active Directory
    Posted: 08-13-2018, 7:00 AM

    Hello Thomas,

    Thanks for the explanation.

    Although all ports are open in both ways for web console in DMZ and web server in internal network, still we can not enter via SSO.

  • Re: Port Requirements between Web Server+Web Console and Active Directory
    Posted: 08-13-2018, 7:15 AM

    Hello Omer,

    Is the user logged in Active Directory when he starts the webconsole external?

    And maybe this will help: http://documentation.commvault.com/commvault/v11/article?p=3675.htm

  • Re: Port Requirements between Web Server+Web Console and Active Directory
    Posted: 08-13-2018, 8:35 AM

    Hello Thomas,

     

    Yes, the user can login to the CommCell Console via SSO.

    Best Regards.

The content of the forums, threads and posts reflects the thoughts and opinions of each author, and does not represent the thoughts, opinions, plans or strategies of Commvault Systems, Inc. ("Commvault") and Commvault undertakes no obligation to update, correct or modify any statements made in this forum. Any and all third party links, statements, comments, or feedback posted to, or otherwise provided by this forum, thread or post are not affiliated with, nor endorsed by, Commvault.
Commvault, Commvault and logo, the “CV” logo, Commvault Systems, Solving Forward, SIM, Singular Information Management, Simpana, Commvault Galaxy, Unified Data Management, QiNetix, Quick Recovery, QR, CommNet, GridStor, Vault Tracker, InnerVault, QuickSnap, QSnap, Recovery Director, CommServe, CommCell, SnapProtect, ROMS, and CommValue, are trademarks or registered trademarks of Commvault Systems, Inc. All other third party brands, products, service names, trademarks, or registered service marks are the property of and used to identify the products or services of their respective owners. All specifications are subject to change without notice.
Close
Copyright © 2018 Commvault | All Rights Reserved. | Legal | Privacy Policy