The RiskAnalyzer Main Console retrieves vulnerability information from third-party vulnerability scanners deployed in your environment. Each of these integrations is implemented by accessing an API provided by the vulnerability scanner host. In some cases, these devices reside on premises, while in other cases they are cloud-hosted. In all cases the Main Console will initiate a TCP connection to the third-party vulnerability scanner's API service (which are typically HTTPS based) and will use REST or SOAP requests to obtain the required data. This process typically runs once per day.
The specific ports and destination hosts that need to be accessible to the Main Console varies by the vendor and your specific deployment configuration. Please consult the Vulnerability Scanners section for more information. Note that the Main Console web interface will typically present default values for ports that usually need to be accessible for a given vendor. Publicly-accessible APIs for cloud-hosted solutions are usually hosted on TCP/443.