I tried both solutions, with or without boundled libraries, but connection still fails when I try to use ldaps.
In ccnet.log, there is:
ldap_bind failed for user Manager: Can't contact LDAP server.
A tshark examination of the traffic to and from the ldaps server shows that after SYN, SYN ACK, the client immediately send a FYN.
Simple unencrypted ldap works fine.