Outbound network requirements for AI features

If your environment uses an outbound firewall, Tosca needs access to specific network addresses for AI features to work properly. This topic lists the endpoints Tosca relies on and that you need to allow.

Vision AI

https://vision-ai.app.tricentis.com/<your tenant name>

Notes

• You also need to allow WebSocket Secure for this domain.

AI services APIs

Domain depends on region:

• api-eu-west-3.ai.tricentis.com/api/*

• api-us-east-1.ai.tricentis.com/api/*

• api-ap-southeast-2.ai.tricentis.com/api/*

Notes

• The region is where you created your Tosca Cloud tenant. For example, if you created your tenant in Europe, allow api-eu-west-3.ai.tricentis.com/api/*.

• You also need to allow WebSocket Secure for this domain.

• Tosca Agentic Test Automation services only use HTTPS, WSS, and TCP port 443.

Tosca Agentic Test Automation front-end

https://tosca-cloud-app.ai.tricentis.com

https://app.ai.tricentis.com/tosca

https://<your Okta org name>.okta.com/*

https://api.coralogix.com/*

https://clientstream.launchdarkly.com/*

https://clientsdk.launchdarkly.com/*

https://events.launchdarkly.com/*

https://otel.observability.app.launchdarkly.com/*

https://pub.observability.app.launchdarkly.com/*

https://fullstory.com/*

https://edge.fullstory.com/*

https://static.fullstory.com/*

rs.fullstory.com

Notes

• You can see your Okta org name in the browser when you sign in to Tosca Cloud.