System Requirements
Hardware, software, and network requirements for Warden VM deployment
NocTel Warden is distributed as a virtual appliance that runs on most popular hypervisors. This page covers the hardware resources, supported platforms, and network configuration needed for a successful deployment.
Minimum Hardware Requirements
The following are the absolute minimum resources required to run Warden:
| Resource | Minimum | Notes |
|---|---|---|
| CPU | 2 vCPUs | x86_64 or ARM64 architecture |
| Memory | 2 GB RAM | 4 GB recommended for production |
| Storage | 40 GB | SSD recommended for better performance |
| Network | 1 NIC | Static IP recommended |
Recommended Sizing
Choose the appropriate size based on your deployment scale:
| Deployment Size | Users | Hosts | vCPUs | RAM | Storage |
|---|---|---|---|---|---|
| Small | Up to 100 | Up to 50 | 2 | 4 GB | 40 GB |
| Medium | 100-500 | 50-200 | 4 | 8 GB | 80 GB |
| Large | 500+ | 200+ | 8 | 16 GB | 160 GB |
Audit logging consideration: If you enable extensive audit logging, increase storage
allocation to accommodate log retention requirements.
Supported Hypervisors
x86_64 Platforms
| Hypervisor | Image Format | Minimum Version |
|---|---|---|
| VMware ESXi | OVA | 6.7+ |
| VMware Workstation | OVA | 15.x+ |
| Microsoft Hyper-V | VHDX | Windows Server 2016+ |
| Proxmox VE | QCOW2 | 7.0+ |
| KVM / libvirt | QCOW2 | QEMU 4.0+ |
| Oracle VirtualBox | OVA | 6.1+ |
| Nutanix AHV | QCOW2 | AOS 5.15+ |
| Citrix XenServer | XVA | 7.0+ |
ARM64 Platforms
Warden fully supports ARM64 architecture, including Apple Silicon Macs (M1, M2, M3, M4):
| Hypervisor | Image Format | Notes |
|---|---|---|
| VMware Fusion | .vmwarevm bundle | macOS (Apple Silicon), 25+ - Recommended |
| Parallels Desktop | PVMX | macOS (Apple Silicon), 18+ |
| UTM | QCOW2 | macOS (Apple Silicon) - Free option |
| QEMU/KVM | QCOW2 | Linux on ARM64 servers (AWS Graviton, Ampere) |
Apple Silicon users: VMware Fusion (free for personal use) provides the best
experience on M-series Macs. Use the
.vmwarevm bundle format - OVA import is not
supported on ARM64. The VM runs natively without emulation.
Network Requirements
Required Ports (Inbound)
The following ports must be accessible from network devices and administrators:
| Port | Protocol | Service | Description |
|---|---|---|---|
| 443 | TCP | HTTPS | Web management interface |
| 1812 | UDP | RADIUS Auth | RADIUS authentication requests |
| 1813 | UDP | RADIUS Acct | RADIUS accounting |
| 636 | TCP | LDAPS | Secure LDAP queries |
Optional Ports (Inbound)
| Port | Protocol | Service | Description |
|---|---|---|---|
| 80 | TCP | HTTP | Redirects to HTTPS |
| 22 | TCP | SSH | Console access (if enabled) |
Outbound Connections
Warden requires outbound access to the following:
| Destination | Port | Protocol | Purpose |
|---|---|---|---|
| license.noctel.com | 443 | TCP | License validation and updates |
| Let's Encrypt (acme-v02.api.letsencrypt.org) | 443 | TCP | Free certificate provisioning and renewal |
| NTP servers | 123 | UDP | Time synchronization (critical for TOTP) |
| Identity providers | Varies | TCP | LDAP (389/636), Azure AD (443), Google (443) |
Airgapped deployments: If your environment cannot reach the internet, contact NocTel
support for offline licensing options.
Browser Support
The Warden web interface is tested and supported on:
| Browser | Minimum Version |
|---|---|
| Google Chrome | 90+ |
| Mozilla Firefox | 90+ |
| Microsoft Edge | 90+ (Chromium-based) |
| Apple Safari | 14+ |
JavaScript must be enabled. The interface is responsive and works on tablets and mobile devices.