Validating services, ports, and processes
After you install IBM® Security Key Lifecycle Manager server, validate that the required services, ports, and processes are running.
Ensure that clients or devices that use IPP to communicate with the IBM Security Key Lifecycle Manager server use the same IPP port number (Default: 1441) that is configured on the server.
Windows
- Services
Component Service Name WebSphere® Application Server IBM WebSphere Application Server V9.0 - SKLM40ServerDb2® DB2SKLMV40 - SKLMDB40Note: The processes run under the Db2 Administrator user account. User credentials for this account are specified during installation. For more information, see Db2 configuration during installation.- Ports
- The following ports must be open for communication and not used by any other processes.Note: If you changed the ports during installation, you can determine the port number. See Checking the current port number.
Description Port Number FCM (Fast Communication Manager) port. You cannot configure this port. Its value is fixed. IBM Security Key Lifecycle Manager requires this port for Db2 installation.
60060 Default HTTPS port to access IBM Security Key Lifecycle Manager graphical user interface and REST services. You can configure this port at the time of IBM Security Key Lifecycle Manager installation.
9443 Default HTTP port to access IBM Security Key Lifecycle Manager graphical user interface. You can configure this port at the time of IBM Security Key Lifecycle Manager installation.
9080 Default HTTPS port to access WebSphere Integrated Solutions Console. You can configure this port at the time of IBM Security Key Lifecycle Manager installation.
9083 Default port for Db2. You can configure this port at the time of IBM Security Key Lifecycle Manager installation. This value might be another port number, depending on the installation settings. There are other ports, which are associated with the default port number.
50060 Default installation time SSL port that listens for KMIP messages. 5696 SSL port for device messages. 1441 TCP port for device messages. 3801 WebSphere Application Server installation requires these ports for various services it provides.
9080 - 9099 User configured replication ports in the replication configuration file for master and clone servers. If a firewall is used between the master and clone servers, the firewall must be configured to pass Internet Control Message Protocol (ICMP). - Default port for IBM Security Key Lifecycle Manager agent. 60015 - Processes
Name Process IBM Security Key Lifecycle Manager WASService.exe and java.exe Db2 db2fmp64.exe and db2syscs.exe
Linux
- Ports
- The following ports must be open for communication and not used by any other processes.Note: If you changed the ports during installation, you can determine the port number. See Checking the current port number.
Description Port Number FCM (Fast Communication Manager) port. You cannot configure this port. Its value is fixed. IBM Security Key Lifecycle Manager requires this port for Db2 installation.
60060 Default HTTPS port to access IBM Security Key Lifecycle Manager graphical user interface and REST services. You can configure this port at the time of IBM Security Key Lifecycle Manager installation.
9443 Default HTTP port to access IBM Security Key Lifecycle Manager graphical user interface. You can configure this port at the time of IBM Security Key Lifecycle Manager installation.
9080 Default HTTPS port to access WebSphere Integrated Solutions Console. You can configure this port at the time of IBM Security Key Lifecycle Manager installation.
9083 Default port for Db2. You can configure this port at the time of IBM Security Key Lifecycle Manager installation. This value might be another port number, depending on the installation settings. There are other ports, which are associated with the default port number.
50060 Default installation time SSL port that listens for KMIP messages. 5696 SSL port for device messages. 1441 TCP port for device messages. 3801 WebSphere Application Server installation requires these ports for various services it provides.
9080 - 9099 User configured replication ports in the replication configuration file for master and clone servers. If a firewall is used between the master and clone servers, the firewall must be configured to pass Internet Control Message Protocol (ICMP). - Default port for IBM Security Key Lifecycle Manager agent. 60015 - Processes
Component Process IBM Security Key Lifecycle Manager WebSphere Application Server and Java Db2 db2fmp64 and db2syscs