Control access at external firewall
You can open or close specific ports at the external firewall.
You can control access to the user interfaces and APIs on StorageGRID Admin Nodes by opening or closing specific ports at the external firewall. For example, you might want to prevent tenants from being able to connect to the Grid Manager at the firewall, in addition to using other methods to control system access.
If you want to configure the StorageGRID internal firewall, see Configure internal firewall.
Port | Description | If port is open… |
---|---|---|
443 |
Default HTTPS port for Admin Nodes |
Web browsers and management API clients can access the Grid Manager, the Grid Management API, the Tenant Manager, and the Tenant Management API. Note: Port 443 is also used for some internal traffic. |
8443 |
Restricted Grid Manager port on Admin Nodes |
|
9443 |
Restricted Tenant Manager port on Admin Nodes |
|
Single sign-on (SSO) is not available on the restricted Grid Manager or Tenant Manager ports. You must use the default HTTPS port (443) if you want users to authenticate with single sign-on. |