![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(108.80000000000001, 20%, 20%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERV%3C/text%3E%3C/svg%3E)
25,081 questions
Hi @Rambabu Vegula · Thank you for reaching out.
Azure AD doesn't support LDAP. In order to fetch any information from Azure AD, REST is used. However, if you want to decommission on-premises Active Directory domain controllers, you can choose to go with Azure AD Domain Services which is a managed service and you don't need to deploy any VMs in Azure and promote those VMs as Domain Controllers. The Domain Controllers deployed with Azure AD Domain Service are synced with Azure AD and any users/groups created in Azure AD gets synced to Azure AD Domain Services. Along with LDAP, it also supports Group Policy, Kerberos and NTLM.
To summarize, you can use Azure AD Domain Services for any legacy applications that cannot be used with Azure AD.
-----------------------------------------------------------------------------------------------------------
Please "Accept the answer" if the information helped you. This will help us and others in the community as well.