A customer needs to submit firewall request to open web traffic to allow administrator access CA Access Gateway Admin Interface (ProxyUI). Customer using the default ports. My guess is Ports 80, 8080 and 443 (ssl). is there any other port that needs to be opened ? Thanks.
CA Access Gateway Admin Interface (ProxyUI) is running on Tomcat Server and here are the OOTB ports for accessing them.
Defines the port that listens for the HTTP requests from Tomcat.
Defines the port that listens for the SSL requests from Tomcat.
Refer here for detailed info:
CA Access Gateway Configuration - CA Single Sign-On - 12.8 - CA Technologies Documentation
How to enable SSL on proxy UI - CA Knowledge