MIIS Firewall IPs
In order to secure transactions between your institution and the Windows Live provisioning system,Microsoft will need to add your schools MIIS server source IP to the permit list on our networkfirewall.The IP address that you give us must be a dedicated static internet addressable IP address. Routingyour MIIS Server through a dedicated firewall/proxy server is acceptable.Run the tests below BEFORE giving us your IP address to be sure that your network is properlyconfigured. It is difficult for us to troubleshoot network routing issues in your own equipment.Once you have configured your IP and run the tests below, send your IP to firstname.lastname@example.org the email title being “MIIS/Firewall IP for MAv2 - <university name>”. Once we get this IP fromyou, we put it in our systems on our side. We will send you email to ask you to test it when the IP isadded to our permit list.
Setting up and Testing the MIIS/Firewall IPs
The IP addresses you give us must be
Static - DHCP assigned IP addresses will not work
Internet routable - 10.x.x.x and 192.168.x.x addresses handed out by most internal routerscannot be used on the internet.
Dedicated to Windows Live calls - Due to the nature of the data we host for our partners, wewould prefer that the source IP(s) provided are dedicated to calls to the Windows Liveprovisioning system. This is to prevent connectivity from other services that you may proxyfrom the same source IP that are unrelated to the Windows Live provisioning functionality.Giving us the general firewall or proxy server of your institution may result in your access toour provisioning server being turned off. If there is other non Windows Live traffic going over this IP address to the server IP we give you, your IP may be locked out without notice.
Open over port 443 (https) and port 80 (http) - You will need to allow two way communicationsover these ports.