There is few prerequisites required to perform this task.
1) Azure AD Domain Service – Azure AD domain service must be enabled and configured with all prerequisite. If you need any help over please refer to my last few posts which explain how to configure.
2) SSL Certificate – It is need to have valid SSL certificate and it need to be from valid certificate authority such as public certificate authority, enterprise certificate authority. Also you can still use self-sign SSL certificate.
In my demo,
1) I have already configured a Azure AD managed domain and running with active subscription
2) I got an Azure VM connected to Azure managed domain and I will be using it to demonstrate to enable Secure LDAP.
3) I am going to use self-signed certificate to create the secure LDAP
Create self-signed certificate
1) Log in to domain joined server, or PC and open windows power-shell session as administrator.
2) Execute following
$validtill=Get-Date
New-SelfSignedCertificate -Subject *.rebeladmin.onmicrosoft.com -NotAfter $validtill.AddDays(365) -KeyUsage DigitalSignature, KeyEncipherment -Type SSLServerAuthentication -DnsName *.rebeladmin.onmicrosoft.com
In here you can replace rebeladmin.onmicrosoft.com with your managed domain name.
This will generate the self-sign certificate.
For the full guide, please go to CANITPRO.
Related posts
Reviews
SAMSUNG GALAXY S8 PLUS
The Samsung Galaxy S8 Plus is a beautifully crafted smartphone with nearly no bezel, curvaceous in design and reflects a…
How to: Connect to Exchange Online Using Multi-Factor Authentication
Using PowerShell to manage your Microsoft cloud services like Exchange Online and using multi-factor authentication (MFA) separately is awesome. Using…
Stay connected