Hi Tiangeng Li,
Thank you for posting in the Q&A Forums.
Overview of port usage
HTTPS (port 443):
This is the most common port used to transfer encrypted HTTP traffic between the Intune Certificate Connector and the CA server.
If your CA server is configured to accept certificate requests over HTTPS, then port 443 will be required.
Other ports:
In some special configurations, other ports may be used, but this is usually not standard practice.
If your CA server is configured to use a non-standard port, you will need to ensure that the appropriate port is opened in the firewall.
Firewall Configuration Recommendations
Allow HTTPS traffic:
In your firewall rules, ensure that HTTPS (port 443) traffic is allowed from servers running the Intune Certificate Connector to the CA server.
Check for specific port requirements:
If your CA server is configured to use a non-standard port, make sure to open that port in the firewall.
You can contact your CA server administrator or check the CA server's configuration documentation for this information.
Network Address Translation (NAT) and Port Forwarding:
If the two servers are not on the same subnet and need to communicate through the firewall, make sure that the appropriate NAT and port forwarding rules are configured.
Best regards
NeuviJ
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.