Forum Discussion
Solved
Does Azure AD (AD Connect) "Password Write Back" require me to open an Port on my on-premise firewal
Hello if I have "Password Write Back" enabled do I need to open a Port on my on-premise firewall? The reason I am asking is I assume the user could logon direclty to Azure using their synced acc...
I think this is what you are looking for:
https://docs.microsoft.com/en-us/azure/active-directory/active-directory-passwords-writeback
Yes, if you're using Azure AD Connect with the "Password Write Back" feature, you will need to open specific ports on your on-premises firewall to allow the necessary communication between your on-premises Active Directory and Azure AD.
The Password Write Back feature allows password changes made in Azure AD to be written back to your on-premises Active Directory. To enable this feature, you need to allow traffic over port 443 (HTTPS) from your Azure AD Connect server to the following endpoints:
passwordreset.microsoftonline.com
ctldl.windowsupdate.com
login.microsoftonline.com
secure.aadcdn.microsoftonline-p.com
Ensure that your firewall rules permit outbound traffic over port 443 to these endpoints. This is essential for the communication required for the Password Write Back functionality to work securely.
Always refer to the official Microsoft documentation or Azure AD Connect documentation for the most up-to-date information on network requirements and configuration.
The Password Write Back feature allows password changes made in Azure AD to be written back to your on-premises Active Directory. To enable this feature, you need to allow traffic over port 443 (HTTPS) from your Azure AD Connect server to the following endpoints:
passwordreset.microsoftonline.com
ctldl.windowsupdate.com
login.microsoftonline.com
secure.aadcdn.microsoftonline-p.com
Ensure that your firewall rules permit outbound traffic over port 443 to these endpoints. This is essential for the communication required for the Password Write Back functionality to work securely.
Always refer to the official Microsoft documentation or Azure AD Connect documentation for the most up-to-date information on network requirements and configuration.