we have upgraded our DC recently and unfortunately, our domain is not a registered domain. It is XXXX.CENTRAL. As per the new rules of CA, we cannot get a trusted certificate for a non-registered domain. LDAP is rejecting our authentication, due to that. I cannot get rid of my old DC because it has a valid certificate running.
I wanted a solution such that I can by pass the certificate purchase.