There are only 2 differences between setting up LDAP and LDAPS:
[ol]
[li]In the Directory configuration where you specify the provider URL, use “ldaps” as the protocol on the url instead of “ldap” and the port number is usually 636 for LDAPS instead of the default 389 for non-ssl ldap.
[/li][li]You’ll also need to import the public key part of the SSL certification from the LDAP server into both the Rhythmyx server’s JRE (just as you do for https access) and in the client developer tools cacerts file located in \JRE\lib\security.
[/li][/ol]
In case anyone comes across this thread in the future, the 64-bit version of CM System requires the certs to be added to both the JRE and JRE64 versions under the Rhythmyx root. While using the Rhythmyx Server Admin tool, the configuration of the Directory is done using the 32-bit version, but assigning users to roles is done at the server, and uses the 64-bit. This means you can have the directory configuration part connect successfully, but still get a binding error when cataloging the users for assignment if the cert has not been added to JRE64. (As was my case)