Jorge's Quest For Knowledge!

All About Identity And Security On-Premises And In The Cloud – It's Just Like An Addiction, The More You Have, The More You Want To Have!

«
»

(2016-06-06) Required Ports For ADFS And WAP

Posted by Jorge on 2016-06-06


Ports Required For ADFS:

  • Any client on internal network – to – any ADFS server : port 443
    • due to accessing ADFS for token issuance

    Any client on external network – to – any WAP server : port 443

    • due to accessing ADFS for token issuance, using the WAP as intermediairy
  • Any connected application server on the internal (RPs/SPs) – to – any ADFS server : port 443
    • due to requests and metadata exchange
  • Any connected application server on the external (RPs/SPs) – to – any WAP server : port 443
    • due to requests and metadata exchange
  • Any connected identity provider server on the internal network (CPs/IdPs) – to – any ADFS server : port 443
    • due to requests and metadata exchange
  • Any connected identity provider server on the external network (CPs/IdPs) – to – any WAP server : port 443
    • due to requests and metadata exchange
  • Load Balancer – to – any ADFS server : port 80
    • due to probe URL for monitoring availability

    Load Balancer – to – any WAP server : port 80

    • due to probe URL for monitoring availability
  • Any WAP server – to – any ADFS server : port 443
    • due to any communication regarding the federation service
  • Any WAP server – to – any ADFS server : port 49443
    • due to certificate based authentication, only really required in ADFS 2012 R2, ADFS 2016 can also use 443 if needed
  • Any ADFS server – to – any ADFS server : port 80

Cheers,
Jorge
———————————————————————————————
* This posting is provided "AS IS" with no warranties and confers no rights!
* Always evaluate/test yourself before using/implementing this!
* DISCLAIMER: https://jorgequestforknowledge.wordpress.com/disclaimer/
———————————————————————————————
############### Jorge’s Quest For Knowledge #############
######### http://JorgeQuestForKnowledge.wordpress.com/ ########
———————————————————————————————

This entry was posted on 2016-06-06 at 23:00 and is filed under Active Directory Federation Services (ADFS), Ports. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

Leave a Reply

Fill in your details below or click an icon to log in:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.

«
»
 
%d bloggers like this: