Install the LDAP certificate in the AD LDS instance

  1. Launch Microsoft Management Console (MMC).
  2. From the menu, select File > Add/Remove Snap-in.
  3. From the Add or Remove Snap-ins page, select Certificates from the Available snap-ins pane and click Add.
  4. Choose Service Account and click Next.
  5. If your AD LDS is on the same machine choose Local computer.
  6. If your AD LDS is on a different machine, choose Another computer and map your machine.
  7. Click Next.
  8. Choose the service account that corresponds to your AD LDS Instance and click Finish.
  9. From the Certificates snap-in page, choose your AD LDS service and click Finish.
  10. From the next page, expand the certificates and then right-click <Your ADLDS location>\Personal\All tasks and click Next.
  11. From the Certificate Import Wizard page, browse to the .pfx certificate file and click Next.
  12. At the prompt, supply the password for the certificate, make sure the flag for Include all extended properties is selected and click Next.
  13. At the next prompt, make sure the correct AD LDS instance\Personal store is selected, select Place all certificates in the following store and then click Next > Finish.