• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 848
  • Last Modified:

AD Authentication through Firewall

Points of My Scenario
1. I am admin of Domain A only, which trusts Domain B
2. App server01 (Domain A member server) sits behind a firewall along with a DC from Domain A
3. Domain B has one DC (domain controller) - but it is NOT behind the firewall
4. Users from Domain A can logon to the application on server01 (Domain A member server)
5. Users from Domain B cannot logon to the application on server01 - because the app server can't pass credentials to DC of Domain-B
What is ports to open in the firewall from server01 to Domain B's DC?
NOTE: I have no admin privileges on DC in domain B.
  • 2
2 Solutions
Sarang TinguriaSr EngineerCommented:
you can use netmon/portquery/wireshark tools to check

Netmon http://download.cnet.com/NetMon/3000-2218_4-10812315.html
Wireshark http://www.wireshark.org/download.html
Portquery http://www.microsoft.com/en-us/download/details.aspx?id=17148

How to configure a firewall for domains and trusts
SandeshdubeySenior Server EngineerCommented:
waltforbesSenior IT SpecialistAuthor Commented:
To sarang_tinguria:
1. I do not need communication between the 'secure' DC (domain A) and LAN DC (domain B).
2. I need communication between the 'secure' App server (domain A) and the LAN DC (domain B): see attached JPEG

To sandeshdubey:
1. The 'secure' App server (domain A) needs to pass authentication requests coming from Domain B users (in the LAN) to LAN DC (domain B) - illustrated in attached JPEG.
2. There are some 19 ports required according to your link (AD Firewall Ports) .
QUESTION: Can I just use one or two ports between secure app server and LAN DC for passing authentication traffic?
waltforbesSenior IT SpecialistAuthor Commented:
To sarang_tinguria & sandeshdubey:
My apologies - I forgot to attach the JPEG. Here it is in this comment.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Protect Your Employees from Wi-Fi Threats

As Wi-Fi growth and popularity continues to climb, not everyone understands the risks that come with connecting to public Wi-Fi or even offering Wi-Fi to employees, visitors and guests. Download the resource kit to make sure your safe wherever business takes you!

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now