During Installation
- *.octopus.cloud
- *.octopuscloud.ch
- *.php.net (can be opened for future PHP upgrades)
- *.sourceforge.net (can be opened for future PHP upgrades)
- *.digicert.com (required for certificate validation)
- *.aka.ms
- *.mysql.com
- *.microsoft.com
- https://api.qrserver.com (required for MFA in OC Reporter)
→ Firewall rules should allow traffic to HTTPs (port 443).
→ ZIP/EXE/XML/CRL/CRT file downloads should be allowed.
→ No TLS MITM/proxying should be done on the given URLs, as the connections will fail, due to certificate validity checks.
After Installation
- *.octopus.cloud
- https://splareporter2.octopus.cloud
- https://splareporter2api.octopus.cloud
- https://splamanager.octopuscloud.ch
- https://splareporter.octopus.cloud
- https://api.qrserver.com/ (required for MFA in OC Reporter).
- *.digicert.com (required for certificate validation of automated OC Configurator server, and OC scanner/OC agent application updates)
- If Azure scan is activated
- https://login.microsoftonline.com (for Azure access token)
- https://management.azure.com (for Azure data)
- https://graph.microsoft.com (for Azure AD)
Prev: Deployment Approaches | Next: Preparation For Remote Access