Enable Azure Domain Services and authentication (MFA) for VM in the cloud

André Borgeld 431 Reputation points

Now we have the following scenario

  1. Azure domain services
  2. Secure Hub (Third party firewall)
  3. Spoke (workload), a windows server VM

I have added 3389 RDP and 445 Smb to reach my machine (works fine). But the machine cannot reach the Azure Domain services for a Domain join and logon.

What (ports/url) do i need to open to join the server to the Azure domain and logon with Azure credentials? It has to be to be as secure as possible

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,457 questions
Microsoft Entra
0 comments No comments
{count} votes

2 answers

Sort by: Most helpful
  1. Andy David - MVP 143.8K Reputation points MVP

  2. Limitless Technology 44,071 Reputation points

    Hello Andre,

    Thank you for your question and for reaching out with your question today.

    General Azure services use standard TCP ports for HTTP (80) and HTTPS (443). However, the link below may be helpful for finding the troublesome port in your system:


    If the reply was helpful, please don’t forget to upvote or accept as answer.

    Best regards.