For Secret Server to perform remote password changing on a machine it makes use of the following ports:
Unix SSH (22)
Unix Telnet (23)
SQL (1433)
Windows Kerberos (441)
Windows NTLM (445)
Active Directory (389 or 636)
Sybase (5000)
Oracle (1521)
In order for remote password changing to work when the target computer is behind a firewall, please verify that the correct ports are configured properly.
Note that remote password changing can be used over VPN as long as these ports are available.
If you don't want to open these ports between different networks, you can also use the optional Remote Agent - this is a Windows Service that runs on the target network (on any Windows box - only one needed per network) and it connects outbound to your Secret Server on a configurable port. The Remote Agent can then coordinate all the password testing and changing as needed on the target network without the need for any additional ports.
Article ID: 32, Created On: 7/24/2008, Modified: 4/4/2012