Application Manager communicates with the Configuration Manager console, or more precisely with the Configuration Manager API and Configuration Manager cmdlets.
For Application Manager to work, it must be installed on a machine which has Configuration Manager console installed. The operating system for the setup can be either Windows or Windows Server.
Application Manager installation requires a service account with the following prerequisites:
- At least an application administrator role in Configuration Manager
- Being a member of a local administrator group or
- Full access to the HKEY_LOCAL_MACHINE\SOFTWARE\Recast Software\Agent Windows registry key and
- Modify permission for the %ProgramData%\Recast Software folder and
- Modify permission for a folder which is specified for downloads. This folder can be a local folder or a UNC location.
The service account credentials are saved to a Windows service.
Internal network communication
Application Manager uses WMI queries to communicate with Configuration Manager Site Server if the console is installed on a remote machine. If the Configuration Manager console is installed on a Configuration Manager Site Server, there is no need for such communication over network. The potential network traffic from Application Manager/ConfigMgr console installation is similar with WMI queries as if the console was used manually.
The WMI queries use RPC protocol to TCP/135. For more information, see Ports used in Configuration Manager in the Microsoft Docs.
Public network communication
Application Manager for Configuration Manager constantly monitors new application versions over the Internet and downloads application media from Azure using the HTTPS protocol over TCP/443.
Application Manager requires outbound access to the following external domains: