OneSpan Authentication Server Appliance uses several different ports to communicate (see Table: Incoming ports used by OneSpan Authentication Server Appliance and Table: Outgoing ports used by OneSpan Authentication Server). If these are blocked by a firewall, some features will not work correctly.
We recommend using a software firewall on OneSpan Authentication Server and segmenting the OneSpan Authentication Server network with a hardware firewall.
Incoming ports
Outgoing ports
| Port description | Default | Protocol | Configuration | Destination |
|---|---|---|---|---|
| RADIUS Authentication | 1812 | UDP | Administration Web Interface: Back-end server records > Authentication Port | RADIUS back-end server |
| RADIUS Accounting | 1813 | UDP | Administration Web Interface: Back-end server records > Accounting Port | RADIUS back-end server |
LDAP | 389 | TCP | Administration Web Interface: Back-end server records > Port | IBM Security Directory Server, or Active Directory back-end servers |
| LDAPS | 636 | TCP | Administration Web Interface: Back-end server records > Port | IBM Security Directory Server, or Active Directory back-end servers |
| HTTPS | 443 | TCP | Not configurable | OneSpan Customer Portal (https://cp.onespan.com/) |
| Audit replication | 5444 | TCP | Not configurable | OneSpan Authentication Server Appliance in replication setup |
| Configuration replication | 20014 | TCP | Not configurable | OneSpan Authentication Server Appliance in replication setup |
| Replication Wizard | 20101 | TCP | Not configurable | OneSpan Authentication Server Appliance Replication Wizard |
| SNMP trap | 162 | UDP | Not configurable | Alerts sent by OneSpan Authentication Server Appliance SNMP trap server |