Windows Server: PK Protect Infrastructure Ports and Protocols

PEM Agent to PEM Administrator
TCP:443 - This port is used for TLS/SSL communication between the PEM Agent and the PEM Administrator. All protocols (IWA are tunneled via TLS)

PEM Administrator to Active Directory
TCP:389 - LDAP The PEM Administrator can be configured to use Active Directory Users and Groups. LDAP should be open from the IIS Host(s) running the PEM Administrator to the domain controllers it has been configured to communicate with.

TCP:636 - LDAPS (LDAP over SSL). An Active Directory Domain Controller can be configured to use SSL for LDAP. This is more secure, and if configured in AD, will provide a higher degree of security for LDAP searches and transactions.

Standard Ports
UDP:53 for DNS
TCP:25 for SMTP based e-mail alerts. (PEM Administrator only)