Unable to deploy ADAudit Plus agent because of firewall limitations
In this article:
Issue description
Prerequisites
Possible causes
Resolution
Related topics and articles
How to reach support
Issue description
ADAudit Plus uses lightweight agents on endpoints to collect event logs and monitor user activity. If the automatic agent deployment often fails due to firewall restrictions or network policies the agent must be installed manually. This article outlines common issues encountered during manual agent installation and helps identify what needs to be in place for a successful setup.
Prerequisites
Before attempting a manual agent installation, ensure the following requirements are met:
The target machine is reachable from the ADAudit Plus server over the network.
All required communication ports are open:
TCP 135 (RPC)
Dynamic RPC range: 49152–65535
Windows Firewall (or any third-party firewall) allows remote administration and agent communication.
The service account used for installation has sufficient permissions, including access to the admin$ share (\<server_name>\admin$) on the target machine.
The agent installer package is available and accessible from the ADAudit Plus server.
Possible causes
The ADAudit Plus server cannot communicate with the target machine due to firewall restrictions.
Resolution
Ensure port 135 is not blocked on the target machine.
Search for Windows Firewall in the Start menu and open it.
Click on Advanced settings to launch Windows Firewall with Advanced Security.
In the left pane, click Inbound Rules, then in the right pane, click New Rule.
Select Port as a rule type and click Next.
Choose TCP (or UDP if needed), select Specific local ports, and enter: 135, 49152-65535.
Click Next, then select Allow the connection.
Choose the network profiles (Domain, Private, Public) to which this rule should apply and click Next.
Enter a descriptive name for the rule (e.g., "ADAudit RPC Ports") and click Finish.
An HTTP connection needs to be established in order for the agent to forward event data to the ADAudit Plus server.
Ensure that both ADAudit Plus and the target machine can ping each other
To ping the target machine, Open Command Prompt on the ADAudit Plus server.
Type the following command and press Enter: ping <TargetMachineName or IP>(Eg. ping dc01.zohocorp.in)
Related topics
How to reach support
New to ADSelfService Plus?
Related Articles
Unable to install ADAudit Plus agent due to permission restrictions
In this article: Issue description Prerequisites Possible causes Resolution Related topics and articles How to reach support Issue description ADAudit Plus requires specific administrative privileges on the target machine to successfully deploy the ...Installing the ADAudit Plus agent via UI
In this article: Objective Prerequisites Steps to follow Validation and confirmation Tips Related topics and articles Objective ADAudit Plus requires an agent installed on target machines to collect logs and monitor activity efficiently. This guide ...Unable to upgrade ADAudit Plus
In this article: Issue description Possible causes Prerequisites Resolution Related topics and articles How to reach support Issue description ManageEngine ADAudit Plus may occasionally encounter issues during the upgrade process, resulting in error ...Error: Unable to get Domain DNS/FLAT names & security package-specific errors in ManageEngine ADAudit Plus
In this article: Issue description Prerequisites Possible causes Resolution How to reach support Related topics and articles Issue description These errors occur in ManageEngine ADAudit Plus when attempting to add a Domain or Domain Controller. The ...How to increase ADAudit Plus Agent EventData directory folder size
In this article: Objective Prerequisites Steps to follow Validation and confirmation Tips Related topics and articles Objective This article explains how to increase the size limit of the EventData directory in GB when the agent is unable to forward ...