Required Network Ports for Active Directory

Here is a listing of the port requirements for Active Directory domain, as well as optional ports:

Required Ports

Port No.

Protocol

Used by

Required for

1024-5000

TCP/UDP

RPC (dynamic response ports)

required for RPC to respond to communications

135

TCP

RPC (endpoint mapper) 

required to open the endpoint mapper to the destination for RPC communications

389

TCP/UDP

LDAP

required to bind to a DC

3268

TCP

LDAP GC 

required to bind to the GC function of a domain controller (extremely important for Exchange)

53

TCP/UDP

DNS

required for name resolution and Active Directory functionality as a whole

88

TCP/UDP

Kerberos

self explanatory

445

TCP

SMB

self explanatory

123

UDP

SNTP

required for time synchronization with a time source

 

 

ICMP

required for group policy detection, application, and MTU size detection, as well as other low level activities

 

Optional Ports

Port No.

Protocol

Used by

Required for

636

TCP

LDAP SSL 

required to bind to a DC using LDAP over SSL

3269

TCP

LDAP GC SSL 

required to bind to a GC using LDAP over SSL

137

UDP

NetBIOS name 

self explanatory

138

UDP

NetBIOS Netlogon and Browsing 

self explanatory

139

TCP

NetBIOS session 

self explanatory

42

TCP

WINS replication 

self explanatory

1723

TCP

PPTP

required if using PPTP VPN tunnel

PortQryUI is a very good to check the ports.

To download portqry:

http://www.microsoft.com/downloads/details.aspx?familyid=8355e537-1ea6-4569-aabb-f248f4bd91d0&displaylang=en

Description of the Portqry.exe command-line utility
http://support.microsoft.com/default.aspx?scid=kb;en-us;310099

For more information on port requirements, please see:

http://support.microsoft.com/support/kb/articles/q179/4/42.asp

For Exchange considerations:

http://support.microsoft.com/?kbid=259240
http://support.microsoft.com/default.aspx?scid=kb;en-us;280132

For SQL considerations:

http://support.microsoft.com/kb/q287932/

For SMS considerations:

http://support.microsoft.com/default.aspx?scid=kb;en-us;200898
http://support.microsoft.com/kb/q167128/

Don’t forget to leave your comments :)

Thanks,
Aresh

Comments

Post a Comment

Popular posts from this blog

ADRestore GUI version

Image
Accidentally deleted user, computer account or OU’s from Active Directory. Don’t worry, now you can get them back using ADRestore tool using GUI interface. Though there is a command line version of tombstone reanimation tool called adrestore - sysinternals, many people are not CLI savvies and having a GUI version of this functionality could really help them out. Insight on tombstone: Reanimating Active Directory Tombstone Objects - By Gil Kirkpatrick Gil Kirkpatrick's article at Technet Main features: Browsing the tombstones Domain Controller targeting Can be used with alternative credentials (convenient if you do not logon to your desktop as Domain Admin, which you should never do anyway) User/Computer/OU/Container reanimation Preview of tombstone attributes Here are some sceenshots: Enumerating tombstones Previewing the tombstone attributes Restoring a deleted user account Notice that if you delete an OU with accounts in it,...
Read more

Azure Virtual Desktop and Windows 365 Cloud PC Newsletter - June 13, 2025

Image
Azure Virtual Desktop and Windows 365 Cloud PC Newsletter Azure Virtual Desktop and Windows 365 Cloud PC Newsletter June 09 to 15, 2025 Greetings from the Azure Virtual Desktop (AVD) and Windows 365 Community Newsletter (June 13, 2025) We are delighted to present this special combined edition of our community newsletters, bringing together insights from both the Azure Virtual Desktop and Windows 365 communities. Our primary objective is to provide you with indispensable insights, tactics, and guidance to enhance your experience with virtual desktop infrastructure and Cloud PC solutions. As our communities thrive and grow, we greet all our new members with a heartfelt welcome. Whether you're an experience...
Read more

Azure Virtual Desktop and Windows 365 Cloud PC Newsletter - May 30, 2025

Image
Azure Virtual Desktop and Windows 365 Cloud PC Newsletter Azure Virtual Desktop and Windows 365 Cloud PC Newsletter May 26 to June 01, 2025 Greetings from the Azure Virtual Desktop (AVD) and Windows 365 Community Newsletter (May 30, 2025) We are delighted to present this special combined edition of our community newsletters, bringing together insights from both the Azure Virtual Desktop and Windows 365 communities. Our primary objective is to provide you with indispensable insights, tactics, and guidance to enhance your experience with virtual desktop infrastructure and Cloud PC solutions. As our communities thrive and grow, we greet all our new members with a heartfelt welcome. Whether you're an experie...
Read more