Enabling Windows firewall on domain controllers

  • Last Post 11 February 2020
Ravi.Sabharanjak posted this 11 February 2020

Hello all,
if you have this enabled on your domain controllers, are there any steps you followed to ensure that enabling it in blocking mode does not have any adverse effects?

ElasticSky posted this 11 February 2020

Morning Ravi,


Speaking for ourselves it is shields up right from the moment the DC is promoted.


I believe that Microsoft don’t actually test the products without the Firewall enabled, so it makes sense to leave the Firewall enabled.


We haven’t had to change anything to get AD to work so as long as you are using standard ports and not doing anything funky, it should

work straight out of the box. The rules are automatically enabled and configured at promotion time.


Hope this makes sense.