question

TuffGong-8526 avatar image
0 Votes"
TuffGong-8526 asked ·

Need help with Azure AD connec

Hi guys! I am setting up a lab environment for adfs. I have a web proxy , DC and adfs server and i was able to set up the adfs with web proxy without any problem. Now i want to use office 365 with my adfs according to the instructions i was following to install Azure AD, i need to install the Azure AD on my th adfs server which i did. But the problem is i get this error message "The provided credentials are valid, however we were unable to establish connection to the local computers forest. Please make sure UDP and TCP ports 389 are open in Doman Controlla associated with the current local computers forest" at Connect to AD DS when i put the domain credentials. I tried turning of the firewalls on all VMS but didnt help. Im stuck now. ` Does anyone know what i did / doing wrong and can help? Thanks

azure-active-directory
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

TuffGong-8526 avatar image
0 Votes"
TuffGong-8526 answered ·

I verified my domain in office 365 admin portal but i didnt configure all the dns required by office 365, i dont know if that is the course. I dont know where to look also since turning off the windows firewall on the DC and adfs does not help

· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

jeetsharma avatar image
0 Votes"
jeetsharma answered ·

Not all the ports that are listed in the tables here are required in all scenarios. For example, if the firewall separates members and DCs, you don't have to open the FRS or DFSR ports. Also, if you know that no clients use LDAP with SSL/TLS, you don't have to open ports 636 and 3269.

You might want to configure a firewall for Active Directory domains and trusts

The two domain controllers are both in the same forest, or the two domain controllers are both in a separate forest. Also, the trusts in the forest are Windows Server 2003 trusts or later version trusts.

Following link might help further, if you haven't looked at it yet. https://support.microsoft.com/en-in/help/179442/how-to-configure-a-firewall-for-domains-and-trusts

· Share
10 |1000 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.