Thread:Extension talk:LDAP Authentication/Having two problems with the LDAP authentication plugin

I installed Mediawiki on Windows Server 2008 R2. We're running IIS7. I installed PHP 5.2.1.2. I'm using a remote mysql db running on a different server. Everything is working fine except for two things;

1) I can't get ldaps working. The debug log has the following: 2010-02-23 17:00:12  iswiki-iswiki_: Entering Connect 2010-02-23 17:00:12  iswiki-iswiki_: Using SSL 2010-02-23 17:00:12  iswiki-iswiki_: Using servers:  ldaps://nsldap.utdallas.edu 2010-02-23 17:00:12  iswiki-iswiki_: Connected successfully 2010-02-23 17:00:12  iswiki-iswiki_: Entering getSearchString 2010-02-23 17:00:12  iswiki-iswiki_: Doing an anonymous bind 2010-02-23 17:00:13  iswiki-iswiki_: Failed to bind as 2010-02-23 17:00:13  iswiki-iswiki_: Failed to bind

Standard ldap works fine. (I also couldn't get AD authentication working, but I suspect it's the same problem with ssl.)

I captured the certs by using "openssl s_client -connect server:636", pasted those into a file, converted them to .pem format and placed them in C:\openldap\CA. The openldap.conf file is in C:\openldap\sysconfig. Looking at the logs on the ldap server, it appears that a connection is never really established.

Docs on the web for this setup are sparse. Any tips would be appreciated.

The second problem is related to the global $wgLDAPServerNames. If I use one server, the system works fine. If I create a comma separated list of servers, it fails. (E.g. $wgLDAPServerNames = array("LDAPDOMAIN" => "ldap1.domain.tld,ldap2.domain.tld");)

Is this a known bug? Or did I misread the docs? I thought the server name list was comma separated. I tried single quotes around each servername, but that didn't change anything.