If the error message is true, MW tries STARTTLS.
It does indeed. That's the default (since clear text is insecure, and
LDAPS is deprecated).
Also you stated:
"I also show on the NetWare server that it is listening on port 636"
This is (in most cases) so called LDAPs (LDAP over SSL) on a - from the
connection on - secure Port. Which is different from LDAP with TLS
(started by STARTTLS), here TLS starts later on on an unencrypted
connection.
From the blog:
"Specifically, the plugin defaults to tls using LDAP (port 389)"
So this is what we see. The plugin tries TLS not SSL. You may check the
plugin config to make the SSL setting work.
He did have that line set incorrectly. I sent him the right setting.
Not sure if he applied it though.
V/r,
Ryan Lane