Network Requirements

On-Premise: Set up port access requirements

Hosted & On-Premise: Set up the firewall to allow traffic to domains

To ensure the flow of information between the N-able N-central server and outside sources, ensure the following domains and URLs are added to your firewall allow list. These domains are needed for outbound communication.

The N-able internal FTP server where a partner can upload and download files such as logs, executables and scripts.

This is also the location where you download scripts from Scripto for additional troubleshooting tools for N-able N-central.

Ports required: TCP 20 and 21, ports above UDP 1024 for passive transfer.

A repository of XML files. Each XML lists download links for .exe, patches and so on.

For example, when the agent is installed on a device and it needs to download AV Defender, the agent goes to and get the link to download the files compatible for the agent version.

Port required: HTTP (80) and HTTPS (443)

  All domains below require port TCP 443.

The location where N-able N-central obtains the NSP file for upgrade. It also has .ISO, vdh.gz files for a N-able N-central installation. There is also an alias of this domain at

The location where the N-able N-central gets RSS feeds.

A repository of XML files. Each XML lists download links for .exe, patches and so on.

On-Premise only

When an N-able N-central server is installed, all information about it is sent to the N-able internal Activation Server.

On-Premise only

Once the N-able N-central server is validated, it communicates with the internal Activation Server to get the full license depending on the contract details.

Used for Apple Push Notification service (APN) and CSR certificate request for Mobile Device Management.

Used for MDM installation, pushing profile to the target device

On-Premise only

The login page used for MSP SSO authentication.

MSP SSO proxy URLs used for user enrollment and user changes synchronization.

On-Premise only

Used by N-able N-central to check the warranty expiration dates of managed devices.

Used For Windows Update, which is needed for Patch Management or any other patch solution software.

Used with Netpath, EDR and future integrated components. Used with Netpath, EDR and future integrated components.


Used by EDR.

Used by Microsoft Intune.

Middleware endpoints.

Rest endpoints.

GRPC endpoints.


Used by Pendo to receive data.

Port required: HTTPS (443) Used for Feature Preview. Used for Integrations like DNS Filter and EDR.


Used for Backup integration connections.





Used for modern agent to cloud communications.