Home
Alerts, reporting, troubleshooting
Local RADIUS/TACACS+ instances
In this collection of topics, you will learn how to troubleshoot problems with the operation of the local RADIUS/TACACS+ instances.
Firewall open ports RADIUS
In this topic, you will learn how to configure your firewall to make sure that the local RADIUS instance can communicate with the cloud RADIUS instances.

Alerts, reporting, troubleshooting
- Portnox Cloud alerts
  In this topic, you will learn what are alerts in Portnox™ Cloud, where to find them, and how to use them effectively.
- AAA Logs
  In this topic, you will learn what are AAA logs in Portnox™ Cloud, where to find them, and how to use them effectively.
- Reporting service
  In this topic, you will learn what is the Portnox™ Cloud reporting service and how to download and/or schedule different types of reports.
- Preventive and reactive measures
  In this collection of topics, you will learn what you can do to prevent service outages and how to react if such outages happen.
- Monitoring mode
  In this collection of topics, you will learn how to use the monitoring mode to safely onboard devices without risking the loss of network access.
- Portnox Cloud onboarding
  In this collection of topics, you will learn how to troubleshoot problems with onboarding devices to a network managed by Portnox™ Cloud.
- Portnox Cloud RADIUS
  In this collection of topics, you will learn how to troubleshoot problems with Portnox™ Cloud RADIUS server connectivity.
- Portnox Active Directory Broker
  In this collection of topics, you will learn how to troubleshoot problems with the installation and operation of the Portnox™ Active Directory Broker.
- Portnox AgentP
  In this collection of topics, you will learn how to troubleshoot problems with the installation and operation of the Portnox™ AgentP.
- Local RADIUS/TACACS+ instances
  In this collection of topics, you will learn how to troubleshoot problems with the operation of the local RADIUS/TACACS+ instances.
  - Troubleshooting using SSH
    In this topic, you will learn how to troubleshoot problems with the operation of the local RADIUS instance in a virtual machine by using the PuTTY application, the SSH protocol, and Linux shell commands.
  - Firewall open ports RADIUS
    In this topic, you will learn how to configure your firewall to make sure that the local RADIUS instance can communicate with the cloud RADIUS instances.
  - Firewall open ports TACACS+
    In this topic, you will learn how to configure your firewall to make sure that the local TACACS+ instance can communicate with the cloud TACACS+ instances.
- Guest network (captive portal)
  In this collection of topics, you will learn how to troubleshoot problems with the Portnox Cloud guest network service and its captive portal.
- Integrations
  In this collection of topics, you will learn how to troubleshoot problems with Portnox Cloud integrations such as those with authentication repositories, endpoint management solutions, and more.
- Conditional Access for Applications
  In this collection of topics, you will learn how to troubleshoot problems with Portnox Conditional Access to Applications.

How to set up the firewall for the local RADIUS instance to connect to Portnox Cloud

In this topic, you will learn how to configure your firewall to make sure that the local RADIUS instance can communicate with the cloud RADIUS instances.

You need to open the following ports on your firewall:


FQDN	Protocol	Ports	Direction
radius.portnox.com	TCP	443	Outbound
rad-events-clear-prod-eastus.servicebus.windows.net	TCP	443	Outbound
rad-events-clear-prod-westeu.servicebus.windows.net	TCP	443	Outbound
devices-ingress-clear-prod-eastus.servicebus.windows.net	TCP	443	Outbound
devices-ingress-clear-prod-westeu.servicebus.windows.net	TCP	443	Outbound
cloudcentraalstoreprodus.blob.core.windows.net	TCP	443	Outbound
cloudcentraalstoreprod.blob.core.windows.net	TCP	443	Outbound
pnxeusprdclrinstallers.blob.core.windows.net	TCP	443	Outbound
pnxweuprdclrinstallers.blob.core.windows.net	TCP	443	Outbound
logs-consolidation-prod-eastus.servicebus.windows.net	TCP	443	Outbound
logs-consolidation-prod-westeu.servicebus.windows.net	TCP	443	Outbound

Note: These rules are relevant for local RADIUS revision 1.1.8 and above.

Note: Since Microsoft services can change their public IP addresses, we recommend not to use static IP addresses, and instead use FQDNs only.