Azure-docs: Login to private link using internal DNS A record and AAD User Fails but works with SQL Login

Hi,

I have setup a private link and we are using our custom internal AD DNS to access. However, we can only access using local SQL Logins and not Azure AD logins when attempting to connect using the A record created in our DNS. I can however login using AAD accounts when connecting using the public FQDN. The error message I receive when attempting using the internal DNS FQDN we created on an AAD account seems common, but I'm not sure if there is a problem or if I'm doing something wrong or not supported.

Error: Cannot connect to azuresqlserver.domain.local, A connection was successfully established with the server, but then an error occurred during the login process. (provider: SSL Provider, error: 0 -The target principal name is incorrect.)

Is it because we are using on-prem AD synced with AAD (using AAD Connect) that is the reason this isn't working? Or is the fact that we elected to use our own DNS instead of the one provided by Azure, which really won't work in our case since we are a hybrid environment?

Document Details

⚠ Do not edit this section. It is required for docs.microsoft.com ➟ GitHub issue linking.

• ID: d16533ae-5e19-5769-4c29-581152f8c30c
• Version Independent ID: 3f1b2b47-0bfe-b65c-ad0a-cca3586f7ba7
• Content: Quickstart - Manage Private Endpoints in Azure
• Content Source: articles/private-link/create-private-endpoint-portal.md
• Service: private-link
• GitHub Login: @malopMSFT
• Microsoft Alias: allensu