Firewall Ports for Active Directory Domain Join | EssingtonITS
Firewall Ports for Active Directory Domain Join
Firewall Ports required to join AD Domain (Minimum)
- TCP 88 (Kerberos Key Distribution Center)
- TCP 135 (Remote Procedure Call)
- TCP 139 (NetBIOS Session Service)
- TCP 389 (LDAP)
- TCP 445 (SMB,Net Logon)
- UDP 53 (DNS)
- UDP 389 (LDAP, DC Locator, Net Logon)
- TCP 49152-65535 (Randomly allocated high TCP ports)
Without TCP High Ports open you may receive errors relating to unavailable RPC servers.
Optional Ports
- UDP 123 (NTP)
- TCP 53 (DNS)
- TCP 464 ( Kerberos Password V5 – Used when user change their password from desktop)
- UDP 137 (NetBIOS Name Resolution)
- UDP 138 (NetBIOS Datagram Service)
- TCP 636 (LDAP SSL)
- UDP 636 (LDAP SSL)
- TCP 3268 (Global Catalog)
No comments:
Post a Comment
Note: only a member of this blog may post a comment.