Recently, the local AD user management in the project needs to be migrated to Azure AD for management. I created an Azure AD DS managed domain as said in https://docs.microsoft.com/en-US/azure/active-directory-domain-services/tutorial-create-instance, the managed domain domain name is quanww163.onmicrosoft .com, ends with .onmicrosoft.com, which is a bit inconsistent with what Microsoft's official documentation describes.
Then I followed the steps given in the official Microsoft documentation https://docs.microsoft.com/en-us/azure/active-directory-domain-services/tutorial-configure-ldaps to enable secure LDAP for Azure AD DS, but I'm having trouble locking down secure LDAP access over the Internet at this step.
The DNS domain name is: quanww163.onmicrosoft.com
The Secure LDAP external IP addresses are: 52.142.16.191
When I configure the DNS zone for external access, I open Notepad as administrator and open the file C:\Windows\System32\drivers\etc\hosts
Configured as follows:
52.142.16.191 quanww163.onmicrosoft.com
When I use LDP.exe to access Azure AD DS via SSL protocol, the access is not successful.
Cannot Open Connection
ld = ldap_sslinit("quanww163.onmicrosoft.com", 636, 1);
Error <0x0> = ldap_set_option(hLdap, LDAP_OPT_PROTOCOL_VERSION, LDAP_VERSION3);
Error <0x51> = ldap_connect(hLdap, NULL);
Server error: <empty>
Error <0x51>: Fail to connect to quanww163.onmicrosoft.com.
Any help would be appreciated!
