I would like our Mac and Thunderbird clients to access the Zimbra LDAP global address book using ssl, internally and externally.

I have opened port 636 on the firewall and made the following changes:

ran zmlocalconfig to change ldap_url=ldap://myserver.mydomain.com:389 to ldap_url=ldaps://myserver.mydomain.com:389

Added the CA cert from the server to the client

Changed the following line in the ldap startup script:
sudo /opt/zimbra/openldap/libexec/slapd -l LOCAL0 -4 \
-u zimbra -h "$my_url" -f /opt/zimbra/conf/slapd.conf


to

sudo /opt/zimbra/openldap/libexec/slapd -l LOCAL0 -4 \
-u zimbra -h "$my_url ldaps://" -f /opt/zimbra/conf/slapd.conf

However, now when I try to send mail from the web interface, Zimbra just locks up.

I'm not all that familiar with ldap so any help is appreciated.

Thanks