can't use AES256-SHA256 encrypted SSL with Azure LDAPS

Rahul Jaswal 6 Reputation points
2019-12-10T01:29:31.197+00:00

Hi there,
I am having issues adding the SSL certificate with AES256-SHA256 encryption on AAD Domain Services blade. I get the error below on my tenant and it doesn't process the change.
However, If I use the same certificate but exported with TripleDES-SHA1 encryption, AAD DS blade accepts the certificate.
Can you advise if we can only use TripleDES-SHA encrypted SSLs with Azure LDAPS and not AES256-SHA256 encrypted SSLs.

Thanks,
Rahul
3812-capture4.jpg

Microsoft Entra
0 comments

4 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Biju Thankappan 101 Reputation points
    2019-12-10T10:53:52.23+00:00

    @Rahul Jaswal Yes, TripleDES-SHA1 encryption is recommended with Azure LDAPS.
    Recommendations:

    • Use TripleDES-SHA1 encryption. Also make sure the password has at least 8 characters.
    • Name should be postfixed with *.pfx suffix. For example, do not use xyz.com.pfx. This will error out with incorrect password.
    1 person found this answer helpful.
  2. Biju Thankappan 101 Reputation points
    2019-12-11T07:34:16.987+00:00

    Hey, np Rahul.

    If this helped you, then please "mark as answer" or "vote as helpful" wherever the information provided helps you to help others in the community.

    Also, please update this thread with your findings from MS.

    Cheers!

    1 person found this answer helpful.
    0 comments
  3. Sameh Sobhy Abdelrady 6 Reputation points
    2022-07-07T14:54:03.057+00:00

    I can't asked a question

    0 comments
  4. Sameh Sobhy Abdelrady 6 Reputation points
    2022-07-07T14:54:55.913+00:00

    I can't asked a question

    0 comments