Kaspersky Security Center

Using Google Firebase Cloud Messaging

14 April 2024

ID 92525_1

To ensure timely responses of KES devices on Android to the administrator's commands, you must enable the use of Google™ Firebase Cloud Messaging (hereinafter referred to as FCM) in the Administration Server properties.

To enable the use of FCM:

  1. In Administration Console, select the Mobile Device Management node, and the Mobile devices folder.
  2. In the context menu of the Mobile devices folder, select Properties.
  3. In the folder properties, select the Google Firebase Cloud Messaging settings section.
  4. In the Sender ID and Server key fields, specify the FCM settings: SENDER_ID and API Key.

FCM service runs in the following address ranges:

  • From the KES device's side, access is required to ports 443 (HTTPS), 5228 (HTTPS), 5229 (HTTPS), and 5230 (HTTPS) of the following addresses:
    • google.com
    • fcm.googleapis.com
    • android.apis.google.com
    • All of the IP addresses listed in Google's ASN of 15169
  • From the Administration Server side, access is required to port 443 (HTTPS) of the following addresses:
    • fcm.googleapis.com
    • All of the IP addresses listed in Google's ASN of 15169

If the proxy server settings (Advanced / Configuring Internet access) have been specified in the Administration Server properties in Administration Console, they will be used for interaction with FCM.

Configuring FCM: retrieving SENDER_ID and API Key

To configure FCM, the administrator must perform the following actions:

  1. Register on Google portal.
  2. Go to Developers portal.
  3. Create a new project by clicking the Create Project button, specify the project's name, and specify the ID.
  4. Wait for the project to be created.

    On the first page of the project, in the upper part of the page, the Project Number field shows the relevant SENDER_ID.

  5. Go to the APIs & auth / APIs section and enable Google Firebase Cloud Messaging for Android.
  6. Go to the APIs & auth / Credentials section and click the Create New Key button.
  7. Click the Server key button.
  8. Impose restrictions (if any), click the Create button.
  9. Retrieve the API Key from the properties of the newly created key (Server key field).

Did you find this article helpful?
What can we do better?
Thank you for your feedback! You're helping us improve.
Thank you for your feedback! You're helping us improve.