I too got it working with Katello 3.5 and there are some instructions for setting it up here. For troubleshooting, I find it easiest to switch to unsecured LDAP and run tcpdump on the LDAP server. Then I can rightclick and follow stream in Wireshark and that gives me the ability to see what step I am failing on and how I might be asking for the wrong thing or misreading the data on the client side.
1 Like