Ports Required for client authentication to AD

[Rtaggart17]

WE have several locations where currently we have our cisco asa devices set
to require the client to authenticate before we allow their source traffice
to come up the vpn tunnel to our home office. This is great since their
computers are in customer's locations. It however is giving me grief for
logon scripts, initial GPO objects etc will not work since the machine cant
talk to our domain controllers when the user is not logged in. I want to
create a rule in our cisco device to allow this back channel communication.
What ports do i need open for GPO, AD, LDAP, Kerberos, Login Scripts Etc?
Any Advice would be greatly appreciated.

 

[Jorge de Almeida Pinto [MVP - DS]]

check out:
http://support.microsoft.com/kb/832017

--

Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)

# Jorge de Almeida Pinto # MVP Identity & Access - Directory Services #

BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx

 

[Jorge de Almeida Pinto [MVP - DS]]

and:
http://www.microsoft.com/downloads/...46-43F0-4CAF-9767-A9166368434E&displaylang=en

--

Cheers,
(HOPEFULLY THIS INFORMATION HELPS YOU!)

# Jorge de Almeida Pinto # MVP Identity & Access - Directory Services #

BLOG (WEB-BASED)--> http://blogs.dirteam.com/blogs/jorge/default.aspx
BLOG (RSS-FEEDS)--> http://blogs.dirteam.com/blogs/jorge/rss.aspx