Solved

Exchange Online and Office 365 firewall settings for internal and external access.

Posted on 2014-04-23
5
2,745 Views
Last Modified: 2014-05-25
I am preparing for Exchange Online to migrate all of our mailboxes to the cloud using a hybrid solution offered by microsoft. In that solution, they have stated a requirement to have an ADFS server and an DirSync server.

Now when I build our servers, all the ports are locked down by default by our hosting company. I am trying to keep this as secure as possible. I am assuming that ADFS needs to be externally facing. What ports will I need to open for the external connectivity.

Also what ports will i require for the internal connectivity between our internal servers.

Lastly, does the DirSync tool need external access and if so what ports are required internally and externally or does the DirSync just need to connect to the ADFS server from the Domain Controller?

 Please help! Newbie with Office 365.
0
Comment
Question by:MSSC_support
  • 3
  • 2
5 Comments
 
LVL 39

Expert Comment

by:Vasil Michev (MVP)
ID: 40017788
You can review all the URLs/IPs and Ports needed here:

http://technet.microsoft.com/en-us/library/hh852522.aspx

http://technet.microsoft.com/library/hh373144.aspx

Depending on which services you are going to use, you might not need some of those. Dirsync needs external access, on 443 (and 80). Use AD FS proxies for external access, the port is again 443.
0
 

Accepted Solution

by:
MSSC_support earned 0 total points
ID: 40019527
Thats great, how about the internal ports I will need?
0
 
LVL 39

Expert Comment

by:Vasil Michev (MVP)
ID: 40019729
For AD FS you need 443, dirsync uses LDAP ones.
0
 

Author Comment

by:MSSC_support
ID: 40078016
Got it. Thanks All.
0
 

Author Closing Comment

by:MSSC_support
ID: 40089266
The site had all the ports i required.
0

Featured Post

Is Your AD Toolbox Looking More Like a Toybox?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Exchange Passive Recynchronization 2 27
exchange, outlook 7 38
Issues with Exchange 2013 local certificate. 31 42
Calendar and Email kept in Andriod 6 20
Microsoft Office Picture Manager was included in Office 2003, 2007, and 2010, but not in Office 2013. Users had hopes that it would be in Office 2016/Office 365, but it is not. Fortunately, the same zero-cost technique that works to install it with …
If you don't know how to downgrade, my instructions below should be helpful.
In this video we show how to create an email address policy in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.:  First we need to log into the Exchange Admin Center. Navigate to the Mail Flow…
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…

932 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now