In this blog, I will provide the Port requirements for VMware Identity Manager (vIDM) On-Prem deployment.
Below is the vIDM port requirement:
| Port | Portal | Source | Target | Description |
| 443 | HTTPS | Load Balancer | VMware Identity Manager virtual appliance | |
| 443 | HTTPS | VMware Identity Manager virtual appliance | VMware Identity Manager virtual appliance | |
| 443 | HTTPS | Browsers | VMware Identity Manager virtual appliance | External & Internal Clients |
| 443 | HTTPS | VMware Identity Manager virtual appliance | vapp-updates.vmware.com | Access to the upgrade server |
| 443 | HTTPS | VMware Identity Manager virtual appliance | catalog.vmwareidentity.com | Access to Cloud Application Catalog |
| 8443 | HTTPS | Browsers (Internal Network) | VMware Identity Manager virtual appliance | Administrator Port – Internal IP to vIDM appliance |
| 25 | SMTP | VMware Identity Manager virtual appliance | SMTP | Port to relay outbound mail |
| 389 | LDAP | VMware Identity Manager virtual appliance | Active Directory | Default values are shown. These ports are configurable. |
| 636 | LDAPS | |||
| 3268 | MSFT-GC | |||
| 3269 | MSFT-GC-SSL | |||
| 53 | TCP/UDP | VMware Identity Manager virtual appliance | DNS server | Every virtual appliance must have access to the DNS server on port 53 and allow incoming SSH traffic on port 22. |
| 88, 464, 135 | TCP/UDP | VMware Identity Manager virtual appliance | Domain controller | |
| 9300–9400 | TCP | VMware Identity Manager virtual appliance | VMware Identity Manager virtual appliance | Audit needs |
| 54328 | UDP | |||
| 1521 | TCP | VMware Identity Manager virtual appliance | Database | The Oracle default port is 1521 |
| 443 | HTTPS | VMware Identity Manager virtual appliance | AirWatch REST API | vIDM appliances to Airwatch API servers (For device compliance checking, unified app catalog and for the ESC Password authentication method) |
| 88 | TCP/UDP | iOS mobile device | VMware Identity Manager virtual appliance | Port used for Kerberos traffic from iOS device to the built-in KDC. |
| 5262 | TCP | Android mobile device | VMware Identity Manager virtual appliance | AirWatch Tunnel client routes traffic to the HTTPS proxy for Android devices. |
| 88 | UDP | iOS mobile device | VMware Identity Manager virtual appliance | Port used for Kerberos traffic from iOS devices to the hosted cloud / Built-In KDC service. |
| 443 | HTTPS/TCP |
*ESC – VMware Enterprise Systems Connector
Hope you find this useful. Thanks for reading, Keep sharing.