To ensure CiraSync On-Premise functions properly, certain firewall permissions must be configured. Use the following guidelines when setting up your firewall:
1. Windows Firewall Settings
If possible, disable the Windows Firewall on the server running CiraSync On-Premise. This allows the service to communicate without interruption.
2. Alternative: Required Port Access
If disabling the firewall isn’t an option for your organization, you must allow traffic through the following ports:
-
-
Port 80 – Used to access the CiraSync On-Premise Web Admin interface locally.
-
Port 443 – Required for making EWS (Exchange Web Services) calls to and from Exchange servers.
-
Port 389 or 636 – Required by itrezzo UCM to read Active Directory information:
-
Port 389 is used for standard LDAP.
-
Port 636 is used for Secure LDAP (LDAPS) over TLS.
Note: These ports are not required for cloud-only deployments.
-
-
High-range Ports (49241 and above) – Must be open to support communication with CiraSync services.
-
