Access Management Services Knowledgebase
Firewalls should be configured to allow traffic from the Campus Active Directory domain controllers.
The Campus Active directory has two domains: ad.wisc.edu and adtest.wisc.edu. Each domain has three domain controllers. The domain controller IP addresses for each domain are:
| ad.wisc.edu | 144.92.104.231 |
| 144.92.104.232 | |
| 144.92.104.233 | |
| adtest.wisc.edu | 144.92.104.51 |
| 144.92.104.67 | |
| 144.92.104.69 |
Active Directory makes use of several ports, so it is easier to allow all traffic from the domain controllers, which should not pose a significant security risk (especially considering that the service can only be accessed via the campus network). However, if you want to restrict communication to specific ports, here is a list of commonly used ports in Active Directory: Active Directory Replication over Firewalls. Please note that this article describes replication, which is an internal system process. Client communication with the domain controller may not make use of all ports listed in the article.
The Campus Active Directory service can only be accessed within the campus network or the WiscVPN service. Exceptions to this rule cannot be made.
| Keywords: | campus active directory ad microsoft ad.wisc.edu adtest.wisc.edu firewall port rule rules exception ip address hostname | Doc ID: | 12329 |
|---|---|---|---|
| Owner: | Andrew H. | Group: | Access Management Services |
| Created: | 2009-10-01 | Updated: | 2009-10-02 |
| Sites: | Access Management Services, Help Desk | ||