Network Ports
SOTI MobiControl uses the following ports to communicate between components.
Tip: For an interactive guide to SOTI MobiControl network connections, see the SOTI MobiControl network configuration diagram.
Deployment Server Connections
| Component Name | Protocol | TCP Port(s) | Direction |
|---|---|---|---|
| SOTI MobiControl Deployment Server
Note: For deployments with multiple deployment servers, for caching purposes.
|
Binary | 5495 | Inbound |
| SOTI MobiControl Management Server | Binary | 5494/5495 | Inbound |
| Amazon App Store | HTTPS | 443 | Outbound |
| Apple Push Notification Service (APNS) | HTTPS | 443 | Outbound |
| Apple DEP | HTTPS | 443 | Outbound |
| Apple VPP | HTTPS | 443 | Outbound |
| Certification Authority - DCOM
Note: Must be on the same domain.
|
Binary | Dynamic | Outbound to the CA |
| Certification Authority - HTTP | HTTPS | 443 | Outbound |
| Google Play | HTTPS | 443 | Outbound |
| iTunes | HTTPS | 443 | Outbound |
| LDAP | LDAP/S | 389/636 | Outbound |
| Microsoft SQL Server (SOTI MobiControl Database) | Binary | 1433 | Outbound from the management server and deployment server to the database |
| SOTI Cloud Link Agent | HTTPS | 443 | Inbound |
| SOTI MobiControl Device Agents | Binary/HTTPS | 5494, 443 | Outbound from the device agents to the deployment server |
| SOTI MobiControl Search | HTTPS | 9200 | Outbound to the MS |
| Native MDM | HTTPS | 443 | Inbound |
| SOTI Services | HTTPS | 443 | Outbound |
| Remote Control | Binary | 5494 | Inbound |
| Windows Notification Service (WNS) | HTTP/S | 80, 443 | Outbound |
Management Server Connections
| Component Name | Protocol | TCP Port(s) | Direction |
|---|---|---|---|
| SOTI MobiControl Deployment Server | Binary | 5494/5495 | Outbound |
| Amazon App Store | HTTPS | 443 | Outbound |
| Apple Push Notification Service (APNS) | HTTPS | 443 | Outbound |
| Apple DEP | HTTPS | 443 | Outbound |
| Apple VPP | HTTPS | 443 | Outbound |
| Certification Authority - DCOM
Note: Must be on the same domain.
|
Binary | Dynamic | Outbound |
| Certification Authority - HTTP | HTTPS | 443 | Outbound |
| Enterprise Resource Gateway (ERG) | HTTPS | 443 | Outbound |
| Google Play | HTTPS | 443 | Outbound |
| iTunes | HTTPS | 443 | Outbound |
| LDAP | LDAP/S | 389/636 | Outbound |
| Microsoft SQL Server (SOTI MobiControl Database) | Binary | 1433 | Outbound |
| SOTI Cloud Link Agent | HTTPS | 443 | Outbound |
| SOTI Services | HTTPS | 443 | Outbound |
| SOTI MobiControl Search | HTTPS | 9200 | Outbound to SOTI MobiControl Search |
| SOTI MobiControl Search | HTTPS | 9300 | Inbound from and Outbound to SOTI MobiControl Search (for multi-MS setups) |
| SOTI MobiControl Console | HTTPS | 443 | Inbound |
| SOTI Assist Server | HTTPS | 443 | Inbound |
Miscellaneous Connections
| Component A | Component B | Protocol | TCP Port(s) |
|---|---|---|---|
| Enterprise Resource Gateway (ERG) | Exchange | Binary | 443 |
| Enterprise Resource Gateway (ERG) | SharePoint/WebDAV | HTTPS/WebDAV | 443 |
| SOTI Cloud Link Agent | Certification Authority - DCOM
Note: Must be on the same domain.
|
Binary | Dynamic |
| SOTI Cloud Link Agent | Certification Authority - HTTP | HTTPS | 443 |
| SOTI Assist Server | Microsoft SQL Server (SOTI Assist Database) | Binary | 1433 |
| SOTI Assist Server | SOTI Assist UI | HTTPS | 443 |
| SOTI Assist UI | Remote Control | HTTPS (web sockets) | 443 |
| SOTI Hub | Enterprise Resource Gateway (ERG) | HTTPS | 443 |
| SOTI Surf | Enterprise Resource Gateway (ERG) | HTTPS | 443 |
| SOTI MobiControl Console | Remote Control | HTTPS (web sockets) | 443 |