You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/active-directory/hybrid/reference-connect-ports.md
+11-11Lines changed: 11 additions & 11 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -30,21 +30,21 @@ This table describes the ports and protocols that are required for communication
30
30
| --- | --- | --- |
31
31
| DNS |53 (TCP/UDP) |DNS lookups on the destination forest. |
32
32
| Kerberos |88 (TCP/UDP) |Kerberos authentication to the AD forest. |
33
-
| MS-RPC |135 (TCP/UDP) |Used during the initial configuration of the Azure AD Connect wizard when it binds to the AD forest, and also during Password synchronization. |
33
+
| MS-RPC |135 (TCP) |Used during the initial configuration of the Azure AD Connect wizard when it binds to the AD forest, and also during Password synchronization. |
34
34
| LDAP |389 (TCP/UDP) |Used for data import from AD. Data is encrypted with Kerberos Sign & Seal. |
35
-
| SMB | 445 (TCP/UDP) |Used by Seamless SSO to create a computer account in the AD forest. |
35
+
| SMB | 445 (TCP) |Used by Seamless SSO to create a computer account in the AD forest. |
36
36
| LDAP/SSL |636 (TCP/UDP) |Used for data import from AD. The data transfer is signed and encrypted. Only used if you are using SSL. |
37
-
| RPC |49152- 65535 (Random high RPC Port)(TCP/UDP) |Used during the initial configuration of Azure AD Connect when it binds to the AD forests, and during Password synchronization. See [KB929851](https://support.microsoft.com/kb/929851), [KB832017](https://support.microsoft.com/kb/832017), and [KB224196](https://support.microsoft.com/kb/224196) for more information. |
38
-
|WinRM | 5985 (TCP/UDP) |Only used if you are installing AD FS with gMSA by Azure AD Connect Wizard|
39
-
|AD DS Web Services | 9389 (TCP/UDP) |Only used if you are installing AD FS with gMSA by Azure AD Connect Wizard |
37
+
| RPC |49152- 65535 (Random high RPC Port)(TCP) |Used during the initial configuration of Azure AD Connect when it binds to the AD forests, and during Password synchronization. See [KB929851](https://support.microsoft.com/kb/929851), [KB832017](https://support.microsoft.com/kb/832017), and [KB224196](https://support.microsoft.com/kb/224196) for more information. |
38
+
|WinRM | 5985 (TCP) |Only used if you are installing AD FS with gMSA by Azure AD Connect Wizard|
39
+
|AD DS Web Services | 9389 (TCP) |Only used if you are installing AD FS with gMSA by Azure AD Connect Wizard |
40
40
41
41
## Table 2 - Azure AD Connect and Azure AD
42
42
This table describes the ports and protocols that are required for communication between the Azure AD Connect server and Azure AD.
43
43
44
44
| Protocol | Ports | Description |
45
45
| --- | --- | --- |
46
-
| HTTP |80 (TCP/UDP) |Used to download CRLs (Certificate Revocation Lists) to verify SSL certificates. |
47
-
| HTTPS |443(TCP/UDP) |Used to synchronize with Azure AD. |
46
+
| HTTP |80 (TCP) |Used to download CRLs (Certificate Revocation Lists) to verify SSL certificates. |
47
+
| HTTPS |443(TCP) |Used to synchronize with Azure AD. |
48
48
49
49
For a list of URLs and IP addresses you need to open in your firewall, see [Office 365 URLs and IP address ranges](https://support.office.com/article/Office-365-URLs-and-IP-address-ranges-8548a211-3fe7-47cb-abb1-355ea5aa88a2).
50
50
@@ -53,23 +53,23 @@ This table describes the ports and protocols that are required for communication
53
53
54
54
| Protocol | Ports | Description |
55
55
| --- | --- | --- |
56
-
| HTTP |80 (TCP/UDP) |Used to download CRLs (Certificate Revocation Lists) to verify SSL certificates. |
57
-
| HTTPS |443(TCP/UDP) |Used to synchronize with Azure AD. |
56
+
| HTTP |80 (TCP) |Used to download CRLs (Certificate Revocation Lists) to verify SSL certificates. |
57
+
| HTTPS |443(TCP) |Used to synchronize with Azure AD. |
58
58
| WinRM |5985 |WinRM Listener |
59
59
60
60
## Table 4 - WAP and Federation Servers
61
61
This table describes the ports and protocols that are required for communication between the Federation servers and WAP servers.
62
62
63
63
| Protocol | Ports | Description |
64
64
| --- | --- | --- |
65
-
| HTTPS |443(TCP/UDP) |Used for authentication. |
65
+
| HTTPS |443(TCP) |Used for authentication. |
66
66
67
67
## Table 5 - WAP and Users
68
68
This table describes the ports and protocols that are required for communication between users and the WAP servers.
69
69
70
70
| Protocol | Ports | Description |
71
71
| --- | --- | --- |
72
-
| HTTPS |443(TCP/UDP) |Used for device authentication. |
72
+
| HTTPS |443(TCP) |Used for device authentication. |
73
73
| TCP |49443 (TCP) |Used for certificate authentication. |
74
74
75
75
## Table 6a & 6b - Pass-through Authentication with Single Sign On (SSO) and Password Hash Sync with Single Sign On (SSO)
0 commit comments