Ultimaker Platform - Network and Security

Before setting up the printers in the network or installing the software into your company workstations, there are always questions that are good to answer with regards to the requirements of the company's IT department. Feel free to send this page to your IT administrators.

The following topics below are common questions that we receive from enterprise customers in different segments. In case you do not see your question in there, reach out to us. 

  1. Network Security - Are all end to end communications secured within the Ultimaker platform?

All cloud-based data, including, but not limited to 3D files, G-code, Ultimaker Connect group statuses, and Ultimaker Marketplace source files, use HTTPS (TLS 1.2) connections with industry standard 2048-bit RSA encryption. You can find a full report here. You can read more about our network security here.

Note: Connections between workstations running Ultimaker Cura and Ultimaker Connect within a local area network are not encrypted.

  1. Ports - Which ports should be open?

    To benefit from the full features of the Ultimaker platform, it is important that there is nothing hindering the communication between the cloud, printer, and the device running Ultimaker Cura. The Ultimaker ecosystem uses ports as follows:UM200303-Ecosystem-graphic-RB-V20a-01.png
      • Communication to cloud servers
        For cloud communication, the following ports need to be open.
        • Port 443 – Encrypted https communication between the cloud server and the printer
        • NTP port 123 – The printer fetches the correct current time stamp using NTP port 123. The correct current timestamp is needed on the printer to establish a cloud connection
        • Port 32118 – When signing-in from Ultimaker Cura, the application creates its own local web server via http://localhost:32118. This is webserver handles the authentication that takes place when the user logs in from Cura. This port must not be blocked on the local computer
        • TCP port 53 on 1.0.0.1. - Ultimaker 2+ Connect only. This 2+ Connect utilizes this port for a communication check
      • Communication on the local network
        On the local network, ensure that ports 80, 5353, and 8080 are open to allow communication between the Ultimaker printer and Ultimaker Cura. The ports are used as follows:
        • Port 5353 – Printer discovery, allowing Ultimaker Cura to detect local network printers
        • Port 80 – Printer control
        • Port 8080 – Camera feed
        • NTP port 123 - time stamp

          Note: Port 22 is used for SSH communication with your printer. This port is closed by default on the printer and is only opened when developer mode is enabled.
  2. Domain - Which domains need to be whitelisted?

    Does your account login fail when you try to login from Cura?
    Does your Ultimaker S5 fail to generate the 6-digit Digital Factory code when you press the Connect button? 

    It may be the case that a restricted firewall or an application installed on your PC or laptop (like Zscaler) is preventing communication with Ultimaker Cloud, preventing proper functioning of online services.

    If that is the case, individual domains may need to be whitelisted. Make sure the following domains are whitelisted:
  3. Connecting the printers to the network - How do the printers connect to the network?

    Ultimaker S-line, Ultimaker 3 and the Ultimaker 2 + Connect printers can connect to a local area network using either Wi-Fi or Ethernet.
    • Wi-Fi or Ethernet - Follow the steps here on how to connect your printer.
    • Setting static IP - from S-Line FW version 6.1.0, it's possible to set static IPs on your printer. Check this link for more information.
    • WPA2 Enterprise Wi-Fi - from S-Lline FW version 6.1.0, it's possible to connect to a WPA2 Enterprise Wi-Fi that requires Username and Password. Using the same method as setting up the network configuration using USB, it's possible to include additional fields in the config file. See this link on how to connect to a WPA2 Enterprise Wi-Fi.

  4. Firewalls and printer locking - How to secure local access to the printers?

    The S-Line printers come with a firewall feature that blocks local access. The printer also comes with a feature that locks the printer settings menu to prevent printer configuration changes. Check the links below for more detailed instructions.
  5. Printer firmware updates

    • When does it update? What are Firmware update channels? 
      Ultimaker releases firmware updates to fix issues and to add new features. To find out more information on this, check this link.
    • What is the procedure to update the firmware?
      The firmware differs per printer. Check the links below that corresponds to your printer:
  6. System requirements - what do you need to run the software to be installed or used?

    Please check this link to find out about our system requirements.

  7. Logging in - What do the users need to login to the Ultimaker Digital Factory? 

    Unless you have integrated with us using FSSO (see below), users who wish to login to the Ultimaker Digital Factory will need create an Ultimaker account. Account creation is free. Check this link for more information on Ultimaker account.

  8. Cloud Security and Ultimaker Cloud Services - How is our data secured by Ultimaker?

    Ultimaker places high value on privacy. The starting point for Ultimaker's approach on privacy and security are the risks that our customers are facing. Please see this link.

  9. Can we integrate with SSO?

    The Ultimaker Excellence subscription supports Federated Single Sign On integration. 

    For Federated Single Sign-On towards your identity provider, Ultimaker currently only supports Azure Active DirectoryWe integrate by means of the APIs provided by Microsoft on login.microsoft.com (for the OAuth2 flow) and graph.microsoft.com (for grabbing the user profile).

  10. Can we use our own private storage? 

    With the Ultimaker Excellence subscription, we allow integration of our cloud services to your private storage. Please contact us for more information. 

Do you still have more questions? You can also check out our FAQ's page.

You can also reach out to us if you do not find answers to your questions above.

Was this article helpful?
12 out of 32 found this helpful

Comments

0 comments

Article is closed for comments.