Adobe AEM Mobile firewall settings

Are you looking for firewall settings to allow your AEM (AKA CQ5) author server communicate with Adobe servers to enable AEMMobile integration?

To enable AEMMobile to integrate with regular AEM (despite the name, they are two entirely different products, the former being a new version of what used to be called DPS or digital publishing system) requires numerous firewall settings to be enabled on your author server.

Unfortunately none of the setup guides provided by Adobe tell you what those settings are, and due to bad SEO, the page with the settings on is not easy to find, not least because it doesn’t reference AEMMobile, instead using the old DPS designation.

But not to worry! You can find the necessary page here:

https://helpx.adobe.com/digital-publishing-solution/kb/Problems-Accessing-DPS-2015-servers.html and in case that page disappears again next time Adobe , here are all the firewall endpoints to need to open up:

 

White-list servers that are used for Adobe Experience Manager Mobile functionality

IT departments can white-list the servers involved in providing the Adobe Experience Manager Mobile functionality. Then, communications with the servers are unimpeded and don’t require user authentication. Below are the servers that the Adobe Experience Manager Mobile’s components use.

These domains use dynamic IP address configurations. So white-listing based on IP addresses gained from a DNS query at one point in time is not reliable. IP addresses for these DNS entries are eliminated and added at any time based on Amazon’s Web Services’s (AWS) fail-safe methods, and expandable server capabilities.

Adobe Experience Manager Mobile Portal

Adobe Experience Manager Mobile Portal:

  • http://aemmobile.adobe.com
  • https://aemmobile.adobe.com
  • https://adobedigitalpublishingportal.d1.sc.omtrdc.net
  • https://ps*.pubnub.com (will vary based on load balancing, for example, https://ps14.pubnub.com)
  • https://dpm.demdex.net
  • https://adobe.demdex.net
  • https://wwwimages2.adobe.com
Login/Account Management Service:
  • https://ims-na1.adobelogin.com (identity management service)
  • https://amas.publish.adobe.io (account management and authorization service)
  • https://authorization.publish.adobe.io (authorization service)
Content/Publishing Services:
  • https://pecs.publish.adobe.io (producer service)
  • https://ings.publish.adobe.io (ingestion service)
  • https://ps.publish.adobe.io (product service)
Migration Service:
  • https://migs.publish.adobe.io
  • https://geo*.adobe.com (may vary, for example, https://geo2.adobe.com)
  • https://universal.iperceptions.com
  • https://origin.adobe-dcfs.com
Analytics Service:
  • http://www.adobe.com
  • https://www.adobe.com
  • https://mobilemarketing.adobe.com
  • https://omniture.tt.omtrdc.net
  • https://adobe.tt.omtrdc.net
  • https://my.omniture.com
  • https://www.omniture-static.com
  • https://sc-css-1.omniture.com
  • https://scripts.omniture.com
App Builder Service:
  • https://ab.publish.adobe.io
  • https://dps-ab-prod-s3-service-*.s3.amazonaws.com (will vary, for example, https://dps-ab-prod-s3-service-1xe1vppi79wya.s3.amazonaws.com)
  • https://s3.amazonaws.com
Push Notification Service:
  • https://rps.publish.adobe.io
Fonts:
  • https://fonts.adobe.com
  • https://use.typekit.net
  • https://p.typekit.net
Debug Logging:
  • https://sstats.adobe.com
  • https://universal.iperceptions.com
Other:
  • https://helpx.adobe.com (support)
  • https://api.behance.net (Behance integration)
  • https://assets.adobedtm.com
  • https://universal.iperceptions.com
  • https://*.vo.msecnd.net (will vary, for example, https://az452423.vo.msecnd.net)
  • https://*.cloudfront.net (will vary, for example, https://d13itkw33a7sus.cloudfront.net)

Adobe Experience Manager Mobile Apps (Including Adobe Preflight)

  • http://adobepublish*.sc.omtrdc.net (analytics service, will vary based on the data center used by a given application, for example, http://adobepublishdallas1.sc.omtrdc.net)
  • https://edge.publish.adobe.com (source of content downloads)
  • https://mobile-collector.newrelic.com (performance and crash logs)
  • https://es.publish.adobe.com (entitlement service)
  • https://cs.publish.adobe.com (configuration service)
  • https://rps.publish.adobe.io (rich push service)
  • https://logs.aemmobile.adobe.com (debug logging)

 

Adobe Experience Manager Mobile Web Viewer

  • https://viewer.aemmobile.adobe.com
  • https://edge.publish.adobe.com (content source)
  • https://es.publish.adobe.com (entitlement service)
  • http://adobedigitalpublishingjupiter*.sc.omtrdc.net (analytics service, will vary based on data center location, for example, http://adobedigitalpublishingjupitersanjose.sc.omtrdc.net)