Just a quick sanity check - is it locally hosted AD, or are you using Azure AD? - if you're using Azure AD you could just be using oauth and whitelist your specific domains.
Authentication
LDAP Server Forest
This discussion has been locked so you can no longer reply to it.