So I finally got it to work unsecurely! I had the two ou= sections reversed accidentally. Here is the final configuration that I got to work:
Glad to hear it!
As a test, I changed the $wgLDAPEncryptionType to ssl and it bombed. What can I do to get the wiki software to trust the certificate of the AD server?
You need to make PHP/OpenLDAP trust the cert, not the wiki software. Discussion on ways of doing this are at:
http://www.mediawiki.org/wiki/Extension:LDAP_Authentication#Trusting_sel f-signed_SSL_certificates
If that doesn't help you, check out PHP's LDAP documentation:
http://us2.php.net/manual/en/ref.ldap.php
http://us2.php.net/manual/en/function.ldap-connect.php#36156
Sorry about the lack of documentation, I rarely have to do this.
V/r,
Ryan Lane