none
Is FIM/SSPR traffic over ports 5725/5726 Encrypted?

    Question

  • Can anyone point me to or  tell me whether or notFIM/SSPR traffic over ports 5725/5726 is encrypted?  I have found general information about FIM and encryption but need to verify that this does include traffic over ports 5725/5726.

    Secure Session Settings for the FIM CM Client

    By default, the FIM CM client encrypts all data that is transmitted to the FIM CM server. The FIM CM client tries to use the Advanced Encryption Standard (AES) 128 encryption algorithm to encrypt data. If AES 128 is unavailable, the FIM CM client uses the Triple Data Encryption Algorithm (TDEA) encryption algorithm. If these algorithms are unavailable, FIM CM client also tries to use the CSP named Microsoft Enhanced RSA and AES Cryptographic Provider.

    Wednesday, April 03, 2013 5:14 PM

All replies

  • Hi,

    FIM CM client is for the Certificate Management part of FIM, what is a totally different animal then FIM Identity Management where SSPR is included.

    I hope everyone else can answer your question about ports 5725/5726.

    Regards,

    Lutz

    Thursday, April 04, 2013 4:13 PM
  • Thanks for the clarification.  Hopefully someone else can confirm whether FIM/SSPR traffic is encrypted as well.
    Friday, April 05, 2013 12:58 PM
  • Yes, we use message security... i.e. the message is encrypted

    The FIM Password Reset Blog http://blogs.technet.com/aho/

    Saturday, April 06, 2013 1:58 AM