Overview

This article provides information on the domains and ports that are required for successful installation, registration and subsequent communication from a Sophos Central endpoint to the Sophos Central Admin and vice versa.

Applies to the following Sophos product(s) and version(s)
Central Mac Endpoint
Central Windows Endpoint 10.8.1
Sophos Central Admin

Sophos Central Partner

• *.sophos.com
  
  Note: This covers domains such as cloud-assets.sophos.com and the regional APIs.

Sophos Endpoint - Domains

• *.sophos.com 
• *.sophosupd.com
• *.sophosupd.net
• *.sophosxl.net
• ocsp2.globalsign.com
• crl.globalsign.com

For customers with an Intercept X Advanced with EDR license the following domains are also required:

• tf-edr-message-upload-eu-central-1-prod-bucket.s3.amazonaws.com
• tf-edr-message-upload-eu-west-1-prod-bucket.s3.amazonaws.com
• tf-edr-message-upload-us-east-2-prod-bucket.s3.amazonaws.com
• tf-edr-message-upload-us-west-2-prod-bucket.s3.amazonaws.com
  

Sophos Endpoint - Ports

• 80 (HTTP)
• 443 (HTTPS)

Related information

• Sophos Central Endpoint: Installer command line options
• Sophos Central Admin: Frequently Asked Questions (FAQ)
• Sophos Central Endpoint: New endpoint installer frequently asked questions
• Sophos Central Endpoint: Installation Unsuccessful - An Internet connection could not be established
• How to configure Sophos Central and UTM managed endpoints to use proxy server settings

Feedback and contact

If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article.
This is invaluable for us to ensure that we continually strive to give our customers the best information possible.