Tanium as a Service requirements

Review the requirements before you use Tanium as a Service.

Tanium dependencies

Component Requirement
Taniumâ„¢ Client 7.4 or later

Endpoints

Supported operating systems

The following endpoint operating systems are supported with Tanium as a Service

  • Windows
  • macOS 
  • Linux
  • Solaris

For Tanium Client operating system support, see Tanium Client User Guide: Host system requirements.

Third-party software

To use Tanium as a Service in production, each customer must bring a Security Assertion Markup Language (SAML 2.0) compliant identity provider with two-factor authentication (2FA) enabled. Configuration of multiple identity providers for a single TaaS instance is supported. Examples of these providers include: 

  • Okta
  • OneLogin
  • Auth0
  • Microsoft Active Directory Federation Services (ADFS)
  • Azure Active Directory (AD)

Host and network security requirements

Specific ports and processes are needed to run Tanium as a Service.

Ports

The following ports are required for Tanium as a Service communication.

Source Destination Port Protocol Purpose
Tanium Client Tanium Client 17472 TCP Communication between Tanium Client installations
Tanium Client Tanium as a Service 17472 TCP Communication between Tanium Client and TaaS
Tanium Client Tanium as a Service 17486 TCP Communication between Tanium Client and TaaS for direct endpoint connections

Security exclusions

If security software is in use in the environment to monitor and block unknown host system processes, your security administrator must create exclusions to allow the Tanium processes to run without interference. For a list of all security exclusions to define across Tanium, see Tanium Core Platform Deployment Reference Guide: Host system security exclusions.

User role requirements

For more information about role permissions and associated content sets, see Tanium Core Platform User Guide: Managing RBAC.