Red Hat Enterprise Virtualization requires a directory server to support user authentication. Currently the supported directory servers are IPA and Active Directory. Both require a number of ports to be opened in the directory server's firewall to support GSS-API authentication as used by the Red Hat Enterprise Virtualization Manager.
Table 2.3. Host Firewall Requirements
Port(s)
Protocol
Source
Destination
Purpose
88, 464
TCP, UDP
Red Hat Enterprise Virtualization Manager
Directory server
Kerberos authentication.
389, 636
TCP
Red Hat Enterprise Virtualization Manager
Directory server
Lightweight Directory Access Protocol (LDAP) and LDAP over SSL.