LDAP Query of AD Users on OD

Hi,

I have my OD Server bound to an AD server. Users appear in Server App and can authenticate fine for file sharing, etc.

I an trying to bind CrushFTP to my server using LDAP. I've all but given up trying to get it to talk to my AD Server directly (2012r2) since Microsoft's weird version of LDAP (called AD LDS) is, well, Microsoft-y.

I'm using ldapsearch to test it but am having trouble finding the right path and credentials to use to authenticate.

ldapsearch -h od.domain.com -p 389 -x -b "dc=od,dc=domain,dc=com" spits back a bunch of users but it looks like all local system accounts.

ldapsearch -h od.domain.com -p 389 -x -b "dc=adserver,dc=local" returns

# extended LDIF

#

# LDAPv3

# base <dc=adserver,dc=local> with scope subtree

# filter: (objectclass=*)

# requesting: ALL

#

# search result

search: 2

result: 32 No such object

so, I am stumped. I can I authenticate users through open directory using LDAP against credentials provided by Active Directory?

(Related issue, when I choose Advanced... for AD users in Server App I am prompted for a login. using either the admin credentials for my OD Server or the one for my AD Server gives me a message that "the user .... is not an administrator on this directory node". But it IS because that's the account I used to bind to AD in the first place!)

Thanks,

Jeff