Endpoint Security and Data Protection provides a full-protection suite of products to establish PCI compliance, including:
Pursuant to PCI DSS Regulations sections 1.1.5 and 2.2.2, the following information clarifies the Windows firewall port exceptions used by Endpoint Security and Control and establishes the high level of security of the Sophos Remote Management System (RMS) communications that are sent through these ports. The following information should be used to justify the port exceptions and security features used by the RMS system.
Endpoint Security and Control requires communication through the Windows firewall ports 8192 and 8194 to allow networked computers to be monitored and managed via the central management application, Enterprise Console. This management increases overall network security, as it allows network administrators to monitor malware, firewall and data control events, and other features from a central location.
The Remote Management System (RMS) uses a proprietary protocol to report status to and take instructions from Enterprise Console. The system is comprised of a Management Agent and message Router, which are located on each client computer and a message Router, Management Service and Certification Manager, which are located on the management server. More information about the individual components and their significant files and services can be found in Remote Management System: components and significant files.
The security features of RMS are described below:
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.