Azure AD Connect and Azure AD Firewall inbound firewall requirement

Chee Wai Koh 1 Reputation point
2021-07-09T16:38:54.66+00:00

Hi,

I am setting-up AAD Connect between On-Prem and Azure AD
Do I need to open inbound ports (443 and 80) from O365 IPs' to On-premise Azure AD connect server? I'm using Password Hash Synchronization method.

Microsoft Entra ID
Microsoft Entra ID
A Microsoft Entra identity service that provides identity management and access control capabilities. Replaces Azure Active Directory.
19,391 questions
{count} votes

2 answers

Sort by: Most helpful
  1. James Hamil 21,546 Reputation points Microsoft Employee
    2021-07-12T20:39:52.133+00:00

    Hi @Chee Wai Koh , a list of all firewall requirements can be found here. From what I can see is yes, you do need to open 443 and 80. Please let me know if you have any questions!

    If this answer helped you please mark it as "Verified" so other users may reference it.

    Thank you,
    James

    0 comments No comments

  2. Chee Wai Koh 1 Reputation point
    2021-07-13T14:13:18.06+00:00

    Hi @James Hamil

    Thanks for reply, if I never turn-on password write-back feature, do I need to open inbound ports to my corporate network?

    https://social.technet.microsoft.com/Forums/windows/en-US/9e6134ed-b981-4f82-83a2-02ad1f08fdbd/inbound-azure-ad-connect-ports?forum=ilm2

    0 comments No comments