# Setup Secure LDAP for Microsoft Entra ID Domain Service

{% hint style="success" %}
By following the steps below, you'll enable secure LDAP on Microsoft Entra ID and configure the required firewall rules and roles, ensuring secure and seamless authentication for your EnGenius Access Points.
{% endhint %}

### **To get started:**

1. Sign in to the Microsoft Azure Admin console.
   * Navigate to [**portal.azure.com**](https://portal.azure.com/) and sign in with your credentials.
2. Enable the Microsoft Entra ID Secure LDAP Server.
   * Follow the instructions provided in the [Microsoft Entra ID documentation](https://learn.microsoft.com/en-us/entra/identity/domain-services/tutorial-configure-ldaps) to enable the secure LDAP server.
3. **(Optional)** Configure an appropriate role for verifying user credentials.
   * Specify a role that can read keys and values for the AP to verify users.
   * For more information on Microsoft Entra built-in roles, see[ ](https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/permissions-reference)<https://learn.microsoft.com/en-us/entra/identity/role-based-access-control/permissions-reference>.
4. Create a Firewall rule for the AP to query your Microsoft Entra ID Secure LDAP Server.
   * Ensure TCP traffic direction is set to outgoing to port 636 of hostname **`ldaps.aaddscontoso.com`** (hostname and port from step 1).


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://doc.engenius.ai/cloud-configuration-guide/topics/authentication-with-microsoft-entra-id-ldap-server/setup-secure-ldap-for-microsoft-entra-id-domain-service.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.