Third Party Wildcard Certificate on DCs for LDAPS

windows windows-server-2008 active-directory windows-server-2012

I am trying to provide Authentication as a Service to my customers. LDAP authentication is perfect for this however I am not a fan of clear text sessions.... enter LDAPS. Active Directory of course has LDAPS turned on however the certificate used is self or local domain signed. This becomes problematic for various reasons. I cannot require my customers to trust my self or locally signed certificate. A third party certificate that my customers do trust would work but unless I am going to create and purchase a new certificate each time I bring up a domain controller that isn't going to work. Ok... so a third party wildcard certificate SHOULD work, but how do you implement?

I have of course Google'd and have read: How to enable LDAP over SSL with a third-party certification authority and Enable LDAP over SSL - Using Wildcard Cert? and Wildcard Certificate on a DC for LDAPS.

All of those are great but I am still missing something...
What are the exact steps to follow?

Am I simply following the steps at How to enable LDAP over SSL with a third-party certification authority but using CN=*.domain.ext instead of CN=mydc.domain.ext ?


Beside sense of exposing AD DS to internet - called KB 321051 says:

The Active Directory fully qualified domain name of the domain controller (for example, DC01.DOMAIN.COM) must appear in one of the following places:

The Common Name (CN) in the Subject field. DNS entry in the Subject Alternative Name extension.

FQDN requirement means wildcard will not work, or at least usually should not work (as always it depends on client code).

Related

Openvpn client, force DNS server
Why are $3D$ transformation matrices $4 \times 4$ instead of $3 \times 3$?
Why aren't integration and differentiation inverses of each other?
What is the 'implicit function theorem'?
What are some examples of infinite dimensional vector spaces?
Why is the localization at a prime ideal a local ring?
How far can one see over the ocean?
Best Algebraic Topology book/Alternative to Allen Hatcher free book?
Why does the volume of the unit sphere go to zero?
How do you rotate a vector by a unit quaternion?
Are there any objects which aren't sets?
What books should I get to self study beyond Calculus for someone about to start undergrad mathematics?