Cylance Endpoint Security network requirements
Cylance Endpoint Security
network requirementsCylance Endpoint Security agents
Cylance Endpoint Security
agentsPort 443 (HTTPS) must be open for the
Cylance Endpoint Security
desktop agents to communicate with the management console. The agents communicate over secure websockets (WSS) and must be able to establish this connection directly. Configure your organization's network to allow connections to the following domains.
- The management console is hosted by AWS and does not have fixed IP addresses. You can allow HTTPS traffic to *.cylance.com. For the cylance-optics-files-use1.s3.amazonaws.com host (and similar hosts for other regions), it is recommended to allow that specific host. It is not recommended to allow *.amazonaws.com because it can open your network to other hosts.
- Please note that the domain api2.cylance.com is deprecated, but is kept open to support olderCylancePROTECT Desktopagents. api2.cylance.com directs to the same destination as api.cylance.com for the purpose of threat analysis and risk scoring.
Item | Description |
---|---|
North America | Required for logging in to the Cylance console:
|
Required for CylancePROTECT Desktop :
| |
Required for CylanceOPTICS :
| |
Required for the CylanceGATEWAY agent:
Required for the CylanceGATEWAY Connector : deb.nodesource.comRequired for the CylanceGATEWAY agent and the CylanceGATEWAY Connector : us1.bg.blackberry.comFor more information, see KB79017. | |
Asia-Pacific Northeast | Required for logging in to the Cylance console:
|
Required for CylancePROTECT Desktop :
| |
Required for CylanceOPTICS :
| |
Required for the CylanceGATEWAY agent:
Required for the CylanceGATEWAY Connector : deb.nodesource.comRequired for the CylanceGATEWAY agent and the CylanceGATEWAY Connector : jp1.bg.blackberry.comFor more information, see KB79017. | |
Asia-Pacific Southeast | Required for logging in to the Cylance console:
|
Required for CylancePROTECT Desktop :
| |
Required for CylanceOPTICS :
| |
Required for the CylanceGATEWAY agent:
Required for the CylanceGATEWAY Connector : deb.nodesource.comRequired for the CylanceGATEWAY agent and the CylanceGATEWAY Connector : au1.bg.blackberry.comFor more information, see KB79017. | |
Europe Central | Required for logging in to the Cylance console:
|
Required for CylancePROTECT Desktop :
| |
Required for CylanceOPTICS :
| |
Required for the CylanceGATEWAY agent:
Required for the CylanceGATEWAY Connector : deb.nodesource.comRequired for the CylanceGATEWAY agent and the CylanceGATEWAY Connector : eu1.bg.blackberry.comFor more information, see KB79017. | |
South America | Required for logging in to the Cylance console:
|
Required for CylancePROTECT Desktop :
| |
Required for CylanceOPTICS :
| |
Required for the CylanceGATEWAY agent:
Required for the CylanceGATEWAY Connector : deb.nodesource.comRequired for the CylanceGATEWAY agent and the CylanceGATEWAY Connector : br1.bg.blackberry.comFor more information, see KB79017. | |
GovCloud | Required for logging in to the Cylance console:
|
Required for CylancePROTECT Desktop :
| |
Required for CylanceOPTICS :
|
CylancePROTECT Mobile app
CylancePROTECT Mobile
appThe
CylancePROTECT Mobile
app requires a secure, direct connection to the following URLs to communicate with the CylancePROTECT Mobile
cloud services. If devices are connected to your organization's Wi-Fi
network, your network configuration must allow connections to:
- CylancePROTECT Mobilecloud service:
- US: https://us1.mtd.blackberry.com
- JP: https://jp1.mtd.blackberry.com
- EU: https://eu1.mtd.blackberry.com
- AU: https://au1.mtd.blackberry.com
- SP: https://br1.mtd.blackberry.com
- Common services gateway:
- US: https://us1.cs.blackberry.com
- JP: https://jp1.cs.blackberry.com
- EU: https://eu1.cs.blackberry.com
- AU: https://au1.cs.blackberry.com
- SP: https://br1.cs.blackberry.com
- https://score.cylance.com
- https://idp.blackberry.com
- https://mobile.ues.blackberry.com