This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(96, 7.000000000000001%, 19%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
May I use non-80 and 443 ports for Azure Active Directory's Application Proxy
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(25.6, 45%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJV%3C/text%3E%3C/svg%3E)
If I understood correctly, your internal website is running on custom ports like 8080, in such a case, you can use because when you setup internal URL, you can include ports as well.
Intenal URL - http://mywebsite:8080/
It should just work fine.
You can change or use any available for your internal application while specifying internal URL, however, for Azure AD app proxy service you cannot make changes to ports it requires to communicate.
Azure AD Application Proxy connectors connect to Azure via HTTPS (TCP Port 443) and HTTP (TCP Port 80).
Open the following ports to outbound traffic.
80 Downloading certificate revocation lists (CRLs) while validating the TLS/SSL certificate
443 All outbound communication with the Application Proxy service
Please let me know if this help !
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(208, 76%, 30%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESD%3C/text%3E%3C/svg%3E)
Hello,
Regards the same topic, we have an internal webserver which hosts two WebApplications.
The first app runs on port 443 and the second one on 449.
My problem is with the second app when using an Entra Enterprise app, the first app runs fine.
I am using a AAD Proxy. I have also made exteral dns records to match it exactly as internal.
Internal url : https://mydomain.we.net:449/myapp02/
External url : https://mydomain.we.net/myapp02/
On the AAD Proxy machine i can access the app on 449. So internally there is not connection issues nor dns issues.
But externally it begins to load the page ( which means the proxy is replying to the client browser) then i get all kinds of erros
https://mydomain.we.net:449/myapp02/ net::ERR_CONNECTION_TIMED_OUT
and Fail to load resource: net::ERR_CONNECTION_TIMED_OUT
I am not supergood at webservers but still trying to figure out what's going wrong.