Topics: |
The following are recommendations and information for the Build and Maintain a Secure Network and Systems requirements.
Omni-Gen Ports
The following table lists the default Omni-Gen ports and their use.
Component |
Type |
Port |
Security |
---|---|---|---|
Omni Controller/Console |
external |
9500 |
https |
Omni Server |
internal |
9514 |
https |
Omni Server Data Quality High-Speed TCP |
internal |
9532 |
TLS 1.0 |
Data Quality Cleanse |
external |
9504 |
https |
Data Quality Cleanse |
internal |
9505 |
TLS 1.0 |
Data Quality Match |
external |
9506 |
https |
Data Quality Match |
internal |
9507 |
TLS 1.0 |
Data Quality Merge |
external |
9508 |
https |
Data Quality Merge |
internal |
9509 |
TLS 1.0 |
Data Quality Remediation |
external |
9510 |
https |
Data Quality Remediation |
internal |
9511 |
TLS 1.0 |
OGC Tomcat Shutdown |
internal |
9524 |
TLS 1.0 |
OGC WSO2 |
external |
9503 |
https |
OGC Tomcat Console |
external |
9526 |
https |
WSO2 RMI Registry |
internal |
9534 |
WSO2 Config |
WSO2 RMI Server |
internal |
9535 |
WSO2 Config |
WSO2 LDAP Server |
internal |
9536 |
WSO2 Config |
WSO2 KDC Server |
internal |
9537 |
WSO2 Config |
Omni Designer TCP Shutdown |
internal |
9515 |
TLS 1.0 |
Omni Designer Console |
external |
9516 |
https |
Omni Designer Redirect |
internal |
9518 |
https |
Omni Designer TCP Jmx |
internal |
9519 |
Tomcat Config |
Omni Designer EMF |
internal |
9520 |
https |
Deployment Console |
external |
9521 |
http |
Deployment Console |
external |
9502 |
https |
GIT/SVN |
external |
80/(8800,8443) |
Repository Config |
Omni-Gen consists of several components. It is strongly advised to change all default credentials to client controlled and maintained credentials.
The user is advised not to install any unrelated components, scripts, jars, or any other files on the production systems, other than the ones required for the product to run. The client is also advised to disable any Omni components not in use to prevent accidental and unintended access.