Azure LDAPS

The following instructions are designed for setting up Azure directory services as an authentication provider using secure LDAP.

In order to connect to Azure LDAPS server, you must start by importing the certificate. For instructions click here.

1. Open the AzureCertificate.pfx and run the Certificate Import Wizard:
   1. Choose Local Machine and click Next
   2. Select path where the certificate should be saved
   3. Enter password
   4. Select Auto Mode and click Finish
2. Export your secure LDAP certificate and convert it to a .cer file. For instructions on how to do this, click here.

IMPORTANT: be sure to replace steps 12-14 (inclusive) with the following:

1. At step 12, select No, do not export the private key.
2. At step 13, select either the first or second option (ending in .CER).
3. Step 14 is not relevant - skip to step 15.
3. Upload the certificate to the Azure Server. For instructions, click here.
4. Upload the SSL certificates through the Admin Console's Certificate Manager. For more information, see Certificate Manager in the Admin Console.
5. Add the domain service to the host file, using your secure LDAP external IP address and domain name: [secure LDAP external IP address] [DNS domain name]
6. Open Pyramid and go to the Admin console:
   1. From the main menu, click Security > Authentication and click Change Provider.
   2. From the Provider drop-down, select Azure Active Directory and enter the required details.
7. Restart the Runtime Engine.