Orchestrator uses specific ports that allow communication with the other systems. The ports are set with a default value, but you can change these values at any time. When you make the changes, verify that all ports are free on your host, and if necessary, open these ports on firewalls as required.

Default Configuration Ports

To provide the Orchestrator service, you must set default ports and configure your firewall to allow incoming TCP connections.

Note:

Other ports might be required if you are using custom plug-ins.

Table 1. VMware vCenter Orchestrator Default Configuration Ports

Port

Number

Protocol

Source

Target

Description

Lookup port

8230

TCP

Orchestrator client

Orchestrator server

The main port to communicate with the Orchestrator server (JNDI port). All other ports communicate with the Orchestrator client through this port.

HTTP server port

8280

TCP

End-user Web browser

Orchestrator server

The port used by the Orchestrator server to connect to the Web view front end through HTTP.

The requests sent to Orchestrator default HTTP Web port 8280 are redirected to the default HTTPS Web port 8281.

HTTPS server port

8281

TCP

End-user Web browser

Orchestrator server

The SSL secured HTTP protocol used to connect to the Web view front end and to communicate with the vCenter Server API.

The access port for the Web Orchestrator home page.

Web configuration HTTPS access port

8283

TCP

End-user Web browser

Orchestrator configuration

The SSL access port for the Web UI of Orchestrator configuration.

Messaging port

8286

TCP

Orchestrator client

Orchestrator server

A Java messaging port used for dispatching events.

Messaging port

8287

TCP

Orchestrator client

Orchestrator server

An SSL secured Java messaging port used for dispatching events.

External Communication Ports

You must configure your firewall to allow outgoing connections so that Orchestrator can communicate with external services.

Table 2. VMware vCenter Orchestrator External Communication Ports

Port

Number

Protocol

Source

Target

Description

LDAP

389

TCP

Orchestrator server

LDAP server

The lookup port of your LDAP Authentication server.

LDAP using SSL

636

TCP

Orchestrator server

LDAP server

The lookup port of your secure LDAP Authentication server.

LDAP using Global Catalog

3268

TCP

Orchestrator server

Global Catalog server

The port to which Microsoft Global Catalog server queries are directed.

vCenter Single Sign-On server

7444

TCP

Orchestrator server

vCenter Single Sign-On server

The port used to communicate with the vCenter Single Sign-On server.

SQL Server

1433

TCP

Orchestrator server

Microsoft SQL Server

The port used to communicate with the Microsoft SQL Server or SQL Server Express instances that are configured as the Orchestrator database.

PostgreSQL

5432

TCP

Orchestrator server

PostgreSQL Server

The port used to communicate with the PostgreSQL Server that is configured as the Orchestrator database.

Oracle

1521

TCP

Orchestrator server

Oracle DB Server

The port used to communicate with the Oracle Database Server that is configured as the Orchestrator database.

SMTP Server port

25

TCP

Orchestrator server

SMTP Server

The port used for email notifications.

vCenter Server API port

443

TCP

Orchestrator server

vCenter Server

The vCenter Server API communication port used by Orchestrator to obtain virtual infrastructure and virtual machine information from the orchestrated vCenter Server instances.