In some scenarios, Portal for ArcGIS acts as a proxy server. This capability is used in several situations, including the following:

• You try to access a resource on a different domain than your portal, and Cross-Origin Resource Sharing (CORS) support is not available. CORS is a specification that allows a web server and a web browser to interact and determine if a cross-origin request should be allowed.
• You add a secured map or feature service to your portal and choose to save credentials.
• You add a KML layer to a map from a URL or as an item to your portal content.
• You add a GeoRSS feed to a map from a URL.
• You try to create a hosted feature layer from a CSV file accessed through a URL.
• You generate an offline map area that includes a basemap from ArcGIS Online.

As of ArcGIS Enterprise 12.0, the portal's proxy capability is restricted by default. This may impact your ability to perform any of the workflows listed above until the appropriate hostname is added to the list of allowed proxy hosts, which by default includes the following:

• (.*).arcgis.com
• (.*).arcgisonline.com
• gisupdates.esri.com
• lws-job-results-prd0-apse2.s3.amazonaws.com—This is used when generating offline basemaps from ArcGIS Online.
• lws-job-results-prd0-euw1.s3.amazonaws.com—This is used when generating offline basemaps from ArcGIS Online.
• lws-job-results-prd0-use1.s3.amazonaws.com—This is used when generating offline basemaps from ArcGIS Online.

To update the list of allowed proxy hosts, follow these steps:

Feedback on this topic?