Trend Micro Apex One
An Overview of Trend Micro Apex One Solution Components
Trend Micro Apex One™ protects enterprise networks from malware, network viruses,
web-based threats, spyware, and mixed threat attacks. An integrated solution, Apex
One consists of the Security Agent program that resides at the endpoint and a server
program that manages all agents. The Security Agent guards the endpoint and reports
its security status to the server. The server, through the web-based management
console, makes it easy to set coordinated security policies and deploy updates to
every Security Agent.
Apex One is powered by the Trend Micro Smart Protection Network™, a next generation
cloud-client infrastructure that delivers security that is smarter than conventional
approaches. Unique in-the-cloud technology and a lighter-weight agent reduce reliance
on conventional pattern downloads and eliminate the delays commonly associated with
desktop updates. Businesses benefit from increased network bandwidth, reduced
processing power, and associated cost savings. Users get immediate access to the
latest protection wherever they connect—within the company network, from home, or
on the go.
Apex One Server:
The Apex One server is the central repository for all agent configurations, security risk
logs, and updates.
The server performs two important functions:
• Installs, monitors, and manages Security Agents
• Downloads most of the components needed by agents. The Apex One server
downloads components from the Trend Micro Active Update server and then
distributes them to agents.
Security Agent:
Protect Windows endpoints from security risks by installing the Security Agent on each
endpoint.
The Security Agent reports to the parent server from which it was installed. Configure
agents to report to another server by using the Agent Mover tool. The Security
Agent sends events and status information to the server in real time. Examples of
events are virus/malware detection, Security Agent startup, Security Agent shutdown,
start of a scan, and completion of an update
Logical View of Trend Micro Apex One
The following diagram provides a high-level view of a typical Apex One deployment
Server Installation Requirements
Network Connectivity Validation
The following diagram describes the required connectivity between the different components in a Apex
One environment.
Ports
Port From Towards Listening Node(S)
80, 443 (TCP) Apex One Internet *.trendmicro.com’*
4343 (TCP) Apex One Agent Apex One
8080 (TCP) Apex One Agent Apex One
8059 (TCP) Apex One Agent Apex One
4345, 8082 (TCP) Apex One Agent Apex One
22301 (TCP) Agent Apex One Agent
80, 443 (TCP) Apex One Apex Central Apex One
137, 139, 445 (TCP) Apex One Agent Apex One
Bi-directional Communication, Agent-initiated Communication, or Apex One-initiated Communication