LDAP requests for Certifcate

[TK-093]

Greetings,
I'm trying to figure out encrypted email on our BES. I'm currently trying to get it working on our test BES server. I have the S/MIME package installed on my Verizon Tour. Our certificates are stored in AD, not in our CA, so I had to email myself my certificate with my private key and import it to my device.

Once I do that, if somebody sends me an encrypted email from their Outlook, I can open it and read it just fine. However, the problem happens when I try to reply to that, or send a new message. I require the public key of the user I am sending it to. That is stored in AD so I am assuming I need to configure an LDAP server to go and get that public key.

I've tried both setting the LDAP in the BES, and just setting it locally on the device. It says it is going out to get it and it just hangs there and after a minute or so comes back and says "An Unknown error occured when processing your LDAP request. Please try again"

I've put a network sniffer on the BES and it is not seeing any traffic from the BES to the Domain controller that I entered in the LDAP settings, so it's like it not even trying to leave the BES.

Does anybody do this? Am I going about it the right way?

Thanks in advance.