DRA uses the following ports and protocols for communication.
Communication path |
Protocol and port |
Use |
---|---|---|
DRA primary Administration server to secondary servers |
DCOM 135 |
End-point mapper, a basic requirement for DRA communication; allows Administration servers to locate each other in an MMS |
DCOM 445 |
Delegation model replication; file replication during MMS synchronization |
|
LDAP 50000 |
Attribute replication and DRA server-ADAM communication. This port number can be configured during installation. |
|
LDAP 50001 |
SSL attribute replication (ADAM) (if enabled). This port number can be configured during installation. |
|
DRA secondary servers to primary Administration server |
DCOM 135 |
End-point mapper, a basic requirement for DRA communication |
DCOM 445 |
Delegation model replication (disabled, but performed on service start); file replication during MMS synchronization |
|
LDAP 50000 |
Attribute replication and DRA server-ADAM communication. This port number can be configured during installation. |
|
LDAP 50001 |
SSL attribute replication (ADAM) (if enabled). This port number can be configured during installation. |
|
RPC all ports from 1024-65535 as served by the DCOM server |
DCOM Service communication |
|
between DRA secondary Administration servers |
LDAP 50000 |
Attribute replication and DRA server-ADLDS communication. This port number can be configured during installation. |
LDAP 50001 |
SSL attribute replication (ADLDS) (if enabled). This port number can be configured during installation. |
|
DRA to domain controllers |
LDAP 389 |
Active Directory object management |
Port 53 |
Name resolution |
|
Kerberos Port 88 |
Allows authentication from the DRA server to the domain controllers |
|
Domain controller to DRA |
RPC all ports from 1024-65535 as served by the DCOM server |
DCOM Service communication |
DRA to and from 32-bit clients |
DCOM 135 |
End-point mapper, a basic requirement for DRA communication |
DRA to and from DRA Web service |
DCOM 135 |
End-point mapper, a basic requirement for DRA communication |
RPC all ports from 1024-65535 as served by the DCOM server |
DCOM Service communication |
|
DRA Web service to and from DRA Web Console |
HTTP SSL 443 |
Web client access |
DRA clients to NetIQ DRA Core Service |
TCP 50101 |
Communication between DRA Client and NetIQ DRA Core ServiceĀ and also between NetIQ DRA Core Service components in an MMS. Used for generating a UI Report from DRA Client. This port number can be configured during installation. |
DRA to Log Archive Server |
TCP 50102 |
Log archive communication. You can configure this port using the Log Archive Configuration wizard. |
DRA to SQL Server |
TCP 1433 |
Database setup and configuration; XML check-in |
UDP 1434 |
If using a SQL Server instance, the browser service uses UDP 1434 to identify the port for the named instance. |
|
DRA to the Exchange Server |
LDAP 389 |
Mailbox management |
TCP 80 |
Needed for all on-premise Exchange Servers 2010 through 2013. |
|
DRA to Office 365 |
TCP 80 |
Remote PowerShell access |
HTTP SSL 443 |
Graph API access |
|
DRA Cache Service |
Any TCP port between 50000 and 66535. The default port is TCP 50103. |
Cache service communication on the DRA server (does not need to be opened through the firewall) |
REST Service |
The default REST Service port is 8755. The default DRA Host Service port is 11192. |
These ports can be changed by the user; however, the new ports must be open to allow clients to connect to them. |
PowerShell to REST Service |
HTTPS The default REST Service port is 8755. |
This port can be changed by the user; however, the new ports must be open to allow clients to connect to them. |