What certs does domain joined RHEL need from a Windows DC?

Have RHEL7 EC2 that have joined a Windows 2016 DC (this is in AWS).

We've noticed that the Windows EC2s, when they enroll in the DC, they automatically download various certs from the DC, for example, something like a machine cert.

My team and I are troubleshooting an app that lives on RHEL7 and this app can't sync users/computers via LDAP and we were wondering if this was due to not automatically downloading these same certs like the Windows EC2 automatically does.

Does anyone know what certs we need from the DC to install on the RHEL7 EC2?

I saw this URL: https://www.redhat.com/en/blog/joining-rhel-microsoft-active-directory

Where it talks about downloading a Windows Domain CA Chain, but I can't find any examples online of what those certs actually are.