vRealize Orchestrator uses specific network ports to communicate with other systems. The ports are configured with a default value, but you can change the defaults at any time. When you make changes, verify that all ports are available for use by your host. If necessary, open these ports on any firewalls through which network traffic for the relevant components flows. Verify that the required network ports are open before you deploy vRealize Orchestrator.

Default Communication Ports

Set default network ports and configure your firewall to allow incoming TCP connections. Other ports may be required if you are using custom plug-ins.

Table 1. vRealize Orchestrator Default Configuration Ports

Port

Number

Protocol

Source

Target

Description

HTTPS server port

443

TCP

End-user Web browser

Embedded vRealize Orchestrator server

The SSL secured HTTP protocol used to connect to the vRealize Orchestrator REST API.

vRealize Appliance Orchestrator Control Center

8283

TCP

End-user Web browser

vRealize Orchestrator configuration

The SSL access port for the control center Web UI for vRealize Orchestrator configuration.

External Communication Ports

Configure your firewall to allow outgoing connections using the external network ports so vRealize Orchestrator can communicate with external services.

Table 2. vRealize Orchestrator Default External Communication Ports

Port

Number

Protocol

Source

Target

Description

LDAP

389

TCP

vRealize Orchestrator server

LDAP server

Lookup port of your LDAP authentication server.

LDAP using SSL

636

TCP

vRealize Orchestrator server

LDAP server

Lookup port of your secure LDAP authentication server.

LDAP using Global Catalog

3268

TCP

vRealize Orchestrator server

Global Catalog server

Port to which Microsoft Global Catalog server queries are directed.

DNS

53

TCP

vRealize Orchestrator server

DNS server

Name resolution

VMware vCenter™ Single Sign-On server

7444

TCP

vRealize Orchestrator server

vCenter Single Sign-On server

Port used to communicate with the vCenter Single Sign-On server.

SMTP Server port

25

TCP

vRealize Orchestrator server

SMTP Server

Port used for email notifications.

vCenter Server API port

443

TCP

vRealize Orchestrator server

VMware vCenter server

The vCenter Server API communication port used by vRealize Orchestrator to obtain virtual infrastructure and virtual machine information from the orchestrated vCenter Server instances.

vCenter Server

80

TCP

vRealize Orchestrator server

vCenter Server

Port used to tunnel HTTPS communication.

VMware ESXi

443

TCP

vRealize Orchestrator server

ESXi hosts

(Optional) Workflows using the vCenter Guest Operations API need direct connection between vRealize Orchestrator and the ESXi hosts the VM is running on.