D.0 Ports Used by GPA
Group Policy Administrator (GPA) requires the following ports to be open:
|
Ports |
Computers |
Notes |
|---|---|---|
|
389/636 |
GPA Console > Domain Controller |
The GPA Console communicates with the domain controller using LDAP over TCP/IP through port 389 (or port 636 for communication via SSL) to perform GP Explorer operations and to import, create, export, check out, and check in GPOs. |
|
389/636 |
GPA Server > Domain Controller |
The Export Only Account on the GPA Server exports GPOs over TCP/IP through port 389 (or port 636 for communication via SSL). |
|
135 |
GPA Console > Domain Controller |
DCOM port used for all remote procedure calls. In GPA, used to connect to Sysvol share folder. |
|
135 |
GPA Server > Domain Controller |
Used to connect to the Sysvol share folder. |
|
135 |
GPA Console > Local GPOs folder |
Used by the RPC Endpoint Mapper to check out GPOs. |
|
135 |
GPA Console > client computer |
Used to generate Diagnostic reports. |
|
445 |
GPA Console > Domain Controller |
Used by Microsoft-DS service to share resources across computers. |
|
445 |
GPA Server > Domain Controller |
Used by Microsoft-DS service. |
|
49156 |
GPA Console > Domain Controller |
Used by LSASS.exe to authenticate credentials. |
|
49156 |
GPA Server > Domain Controller |
Used by LSASS.exe to authenticate credentials. |
|
49000-65535 |
GPA Console > Domain Controller |
Dynamic return ports used by GPA console for RPC. |
|
1433 |
GPA Console > GP Repository |
Used by Microsoft SQL Server for all GPA operations that involve the GP Repository. |
|
63847 |
GPA Console > GPA Server |
Used by GPA Server service to send notifications and by the Export Only Account to export GPOs. Also used by GPA Console to connect to GPA Server published in AD to use that server to search GPOs in AD or GP Repository domains. |
|
64000 |
GPA Server > GPA Server |
Used by NetIQ.GPA.SettingsReport.exe process to generate the GPO Settings report for AD or Repository GPOs in order to be indexed. |
|
25 |
GPA Server > Mail Server |
Used by the GPA Server to send emails by SMTP to the mail server. |
The following image illustrates the ports, protocols, and services used by GPA.
