If you use an enterprise CA in your organization, get the secure LDAP certificate from the enterprise CA.
If needed, install the Remote Server Administration Tools (RSAT) for Active Directory Domain Services and LDAP.The LDP.exe tool installed on your computer.If needed, create and configure an Azure Active Directory Domain Services managed domain.An Azure Active Directory Domain Services managed domain enabled and configured in your Azure AD tenant.If needed, create an Azure Active Directory tenant or associate an Azure subscription with your account.An Azure Active Directory tenant associated with your subscription, either synchronized with an on-premises directory or a cloud-only directory.If you don't have an Azure subscription, create an account.To complete this tutorial, you need the following resources and privileges: If you don't have an Azure subscription, create an account before you begin.
Bind and test secure LDAP for a managed domain.
Create a digital certificate for use with Azure AD DS.