Unable to join a Windows 11 system to Windows Server 2022 Active Directory

Sorry I am a newbie, Does anyone know how to setup CF ZeroTrust to work in on-prem Active Directory and local Windows DNS. I have added Local Domain Fallback and put excluding my whole on-prem Subnet in exclude split tunnel. I am still unable to get a Windows 11 system to join the domain.