Thursday, 17 October 2024

Firewall Ports for Active Directory Domain Join

Firewall Ports for Active Directory Domain Join | EssingtonITS

Firewall Ports for Active Directory Domain Join

 

Firewall Ports required to join AD Domain (Minimum)

  • TCP 88 (Kerberos Key Distribution Center)
  • TCP 135 (Remote Procedure Call)
  • TCP 139 (NetBIOS Session Service)
  • TCP 389 (LDAP)
  • TCP 445 (SMB,Net Logon)
  • UDP 53 (DNS)
  • UDP 389 (LDAP, DC Locator, Net Logon)
  • TCP 49152-65535 (Randomly allocated high TCP ports)

Without TCP High Ports open you may receive errors relating to unavailable RPC servers.

Optional Ports

  • UDP 123 (NTP)
  • TCP 53 (DNS)
  • TCP 464 ( Kerberos Password V5 – Used when user change their password from desktop)
  • UDP 137 (NetBIOS Name Resolution)
  • UDP 138 (NetBIOS Datagram Service)
  • TCP 636 (LDAP SSL)
  • UDP 636 (LDAP SSL)
  • TCP 3268 (Global Catalog)

 

No comments:

Post a Comment

Note: only a member of this blog may post a comment.

Blog Archive