Use the connectivity string as ldaps://ip:636
No luck, logs show an attempt to connect to that port, and packet capture show that a TLS connection is established (Handshake finishes). I've run netstat to confirm that the port 636 is open as well, and the openldap server is logging the vCenter IP address.
This is all I see on openLDAP server:
conn=1001 fd=13 ACCEPT from IP=[vCenter IP Address]:34594 (IP=0.0.0.0:636)
conn=1001 fd=13 TLS established tls_ssf=256 ssf=256
conn=1001 fd=13 closed (connection lost)
So it looks like it makes a connection and then just gives up, and on the vCenter server I just have an LDAP error code of -1.
can you specify the User Bind DN?
Yes. I can successfully connect through normal LDAP. So I believe the DNs are correct.
