----- Original Message -----
I am by no means an LDAP expert, but as an experienced Linux sysadmin I do have to say
that I have had some very tricky issues with OpenLDAP.
One of them involved fiddling for days with difficulty changing the root password, after
finally finding out that the Ubuntu docs were wrong ; they had cause me to create two
admin users, with the passwords in plain text no less.
The other involved getting 'TLS required' on the TCP connection, which seems to be
undocumented. My question on Serverfault about it  is getting to be quite popular.
Forcing encryption would have been a lot easier if a different port for SSL wasn't