To enable the verification of the password entered by the user in the enrollment process,AirID Virtual must be able to access the AD from outside. For this purpose, port 636 must be opened in the firewall (both on the domain controller and on the router). The IP addresses can be restricted to the Azure addresses used by us:
13.69.68.15
104.214.230.13
23.97.173.214
23.97.217.1
40.115.38.157
168.63.19.216
It is not absolutely necessary to enable the standard LDAPS port(636). The AirID Virtual can adjust the LDAPS port freely, which has been configured by the customer.
Access is via servers hosted in the EU!