Working with Port 5900

note-icon End of Support Note:

Port 5900 is no longer supported, starting from the following releases. Attempting to configure an RFB password or enabling the port via IPS_KVMRedirectionSettingData.PUT causes Intel AMT to return the message unsupported:

  • Kaby Lake: 11.8.94
  • Cannon Lake: 12.0.93
  • Comet Lake: 14.1.70
  • Tiger Lake: 15.0.45
  • Alder Lake, Raptor Lake: 16.1.25

Port 5900 is the IANA port reserved for Virtual Network Computing (VNC). By enabling port 5900, all traffic to this port is routed to Intel AMT for KVM processing. The RFB protocol requires a password, so the first time an application enables port 5900, it should also set the RFB password.

If the console also uses a software KVM solution, enabling port 5900 for Intel AMT will block traffic to the software server if it also uses port 5900. There are two ways to work with both a software and embedded KVM server.

note-icon Note:

Port 5900 does not use TLS even if Intel AMT is provisioned to use TLS.

 

1.  Configure the software KVM server to accept traffic from a different port.

2.  Enable port 5900 for the Intel AMT KVM server only when working with it and disable the port at other times.

Consider the following sequence:
While working with a software KVM server, the support technician needs to remotely re-boot the platform and then examine or change BIOS settings. The technician enables port 5900 for the Intel AMT KVM server, initiates the re-boot via the Intel AMT KVM server, performs the necessary tasks with the BIOS, and then allows the operating system to start. Then the technician disables port 5900 for Intel AMT and returns to working with the software server.

Copyright © 2006-2022, Intel Corporation. All rights reserved.