Join server to domain

Question

Hi All

i have two servers(2019/2016) in an untrusted network and i want to join these servers to the domain. i need to allow ports in the network firewall to join to the domain. Are the below ports enough for joining the server to the domain.

TCP 88
TCP 135
TCP 139
TCP 389
TCP 445
UDP 53
UDP 389
TCP 49152-65535

Answer 1

Hi,

This should help you in creating the FW rules to allow connectivity to the Domain - config-firewall-for-ad-domains-and-trusts

Hope this helps.
JS

==
Please Accept the answer if the information helped you. This will help us and others in the community as well.

Answer 2

Hello

Thank you for your question and reaching out. I can understand you are having query\issues related to firewall ports opening for AD communication.

Additionally please try to Open below ports as well for domain controller communication.

LDAP TCP-in - 389
LDAP UDP in - 389
LDAP for Global Catalog TCP in - 3268
NetBIOS name Resolution UDP in - 138
SAM/LSA TCP in - 445
SAM/LSA UDP in - 445
Secure LDAP TCP in - 636
Secure LDAP for Global Catalog TCP in - 3269
W32Time NTP UDP in - 123
RPC - RPC Dynamic
RPC Endpoint Mapper
DNS - TCP and UDP 53
Kerberos V5 UDP in - 88
Netbios Datagram UDP in - 137

-------------------------------------------------------------------------------------------------------------------------------------------------

--If the reply is helpful, please Upvote and Accept as answer--