Orchestrator uses specific ports that allow communication with the other systems. Some of the communication ports you must set are a subset of the standard ports that the Orchestrator JBoss application server uses. The ports are set with a default value, but you can change these values at any time. When you make the changes, verify that all ports are free on your host and, if necessary, open these ports on required firewalls.

To provide the Orchestrator service, you must set the default ports and configure your firewall to allow incoming TCP connections.

Note

Other ports might be required if you are using custom plug-ins.

VMware vCenter Orchestrator Default Configuration Ports

Port

Number

Protocol

Source

Target

Description

Lookup port

8230

TCP

Orchestrator client

Orchestrator server

The main port to communicate with the Orchestrator server (JNDI port). All other ports communicate with the Orchestrator client through this port. It is part of the JBoss application server infrastructure.

Command port

8240

TCP

Orchestrator client

Orchestrator server

The application communication port (RMI container port) used for loading the Orchestrator client remotely. It is part of the JBoss application server infrastructure.

Messaging port

8250

TCP

Orchestrator client

Orchestrator server

The Java messaging port used for dispatching events. It is part of the JBoss application server infrastructure.

Data port

8244

TCP

Orchestrator client

Orchestrator server

The port used for accessing all Orchestrator data models, such as workflows and policies. It is part of the JBoss application server infrastructure.

HTTP server port

8280

TCP

End-user Web browser

Orchestrator server

The port used by the Orchestrator server to connect to the Web view front end through HTTP.

HTTPS server port

8281

TCP

End-user Web browser

Orchestrator server

The SSL secured HTTP protocol used to connect to the Web view front end and to communicate with the vCenter Server API.

Web configuration HTTP access port

8282

TCP

End-user Web browser

Orchestrator configuration

The access port for the Web UI of Orchestrator configuration.

Web configuration HTTPS access port

8283

TCP

End-user Web browser

Orchestrator configuration

The SSL access port for the Web UI of Orchestrator configuration.

You must configure your firewall to allow outgoing connections so that Orchestrator can communicate with external services.

VMware vCenter Orchestrator External Communication Ports

Port

Number

Protocol

Source

Target

Description

LDAP

389

TCP

Orchestrator server

LDAP server

The lookup port of your LDAP Authentication server.

LDAP using SSL

636

TCP

Orchestrator server

LDAP server

The lookup port of your secure LDAP Authentication server.

LDAP using Global Catalog

3268

TCP

Orchestrator server

Global Catalog server

The port to which Microsoft Global Catalog server queries are directed.

SQL Server

1433

TCP

Orchestrator server

Microsoft SQL Server

The port used to communicate with the Microsoft SQL Server or SQL Server Express instances that are configured as the Orchestrator database.

Oracle

1521

TCP

Orchestrator server

Oracle DB Server

The port used to communicate with the Oracle Database Server that is configured as the Orchestrator database.

SMTP Server port

25

TCP

Orchestrator server

SMTP Server

The port used for email notifications.

vCenter Server API port

443

TCP

Orchestrator server

vCenter Server

The vCenter Server API communication port used by Orchestrator to obtain virtual infrastructure and virtual machine information from the orchestrated vCenter Server instances.

Internal JBoss Server ports do not need to be added to the firewall exceptions.

Internal JBoss Server Ports

Port Number

Description

3455

RMI server registry invoker

3873

EJB3 and AOP remoting connector

4445

JBoss pooled invoker

4446

Remoting server service connector

8083

Dynamic class and resource loader