This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(243.2, 75%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPL%3C/text%3E%3C/svg%3E)
After following the article for setting up Secure LDAP with a cloud only Azure AD, i can not BIND and view the AADS instance with my account,
I am a Global Admin on the AD
This is a Cloud Only setup (no on premise sync)
Followed the guide microsoft provided
Used a public Wild Card Cert and a Domain I own
Guide used
https://learn.microsoft.com/en-us/azure/active-directory-domain-services/tutorial-configure-ldaps
Error Message:
Error <49>: ldap_bind_s() failed: Invalid Credentials.
Server error: 8009030C: LdapErr: DSID-0C090590, comment: AcceptSecurityContext error, data 52e, v2580
Error 0x8009030C The logon attempt failed
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 17%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJ%3C/text%3E%3C/svg%3E)
Did you find where the problem was? I'm stuck with the same problem and trying to solve it for the whole day...
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(198.4, 57.00000000000001%, 29%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EKO%3C/text%3E%3C/svg%3E)
I have the same problem. Could anybody help?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(112.00000000000001, 68%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EE%3C/text%3E%3C/svg%3E)
Hi there,
I had the same problem. The solution was weird.
It was neccessary to reset the password from the "bind-user"!!
Background: This step is required because its an online user. For Sign-in LDAPS requires a password hash. When you reset the password, AAD creates a hash and after a few minutes it synchronise it with AADDS.
this worked for me too! thanks
Hello @Paul Layne
Error "Error <49>: ldap_bind_s() failed: Invalid Credentials." means that you are trying to connect to AzureAD LDAP using wrong username or password.
You can test connection to your AzureAD LDAP using LDP.exe utility.
https://learn.microsoft.com/en-us/azure/active-directory-domain-services/tutorial-configure-ldaps#test-queries-to-the-managed-domain
I am trying to preform that step of the article and i am using valid credentials (they are the same credentials i use to login to azure and office 365 portal)
My account is Global Admin and AAD Administrator so it has the roles required
I understand that you using same credential to azure and office 365 portal, but error says Invalid Credentials.
May you please test connection to your AzureAD LDAP using LDP.exe utility and let me know if it is successful?
The Main Connection is successfuly
When i attempt to "Bind with Credentials" it fails
I have used both
username: me@my.domain / me
password: the correct password (copied and pasted in from notepad for 100% accuracy)
domain: blank and the AADS url
No combination i have tried works and the error posted it directly from LDP.exe,
I am trying LDP first before i proceed to our legacy applications
What URL are you using from BIND ldaps://<domain>:636?
Specify user as user@keyman .com
Try to enable self service password reset
https://learn.microsoft.com/en-us/azure/active-directory/authentication/tutorial-enable-sspr
Hi Andriy
Self Service Password Reset is enabled.
LDP isnt giving me and option for URI
it takes in the domain , port, and if it should SSL
i used myaads.domain.tld + port 636 and check the SSL Box
I have tried the user as User@keyman .tld, my email address, and just a pure username
none work
also tried with and without the domain field filled in with myaads.domain.tld and blank
Could you please try to reset user password via self service portal, wait 15 minutes and try login via LDP.exe
i have tried this 3 times today i waited 15 30 and 1hr. Didnt change
May you please try Simple Bind in LDP utility?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 57.00000000000001%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ET%3C/text%3E%3C/svg%3E)
Did you end up solving this problem?
I am currently facing the same issue.