I’m seeing the error on the domain controller that’s configured as a Root CA. Troubleshooting log shows:
Troubleshooting AD LDAP connector
Reading CA certificates from Windows Store
Adding 32 certificates
14:21:36 - info: No proxy server configured.
14:21:36 - info: * Testing connectivity to Auth0...
14:21:36 - info: > Test endpoint: https://xxx.auth0.com/test
14:21:36 - info: √ Connection to test endpoint succeeded.
14:21:36 - info: * Testing hub connectivity (WS).
14:21:36 - info: √ Connection to hub succeeded.
14:21:36 - info: * Testing clock skew...
14:21:36 - info: √ Everything OK. No clock skew detected.
14:21:36 - info: * Testing certificates...
14:21:36 - info: > Local thumbprint: 5e438ca4a48261f3e86b3201c7c79fc3181d67c8
14:21:37 - info: > Server thumbprint: 8a5a375e38ece64764156c16f24e7e75bc66c9e3
14:21:37 - error: × Local and server certificates don't match.