Saying that it found the server implies that a network roundtrip has taken place. This can be misleading.
The following log was taken when my network was turned off:
sajack@spencerLaptop /home/sajack/mongo git master () % LDAPTLS_CACERT=/home/sajack/mongo-enterprise-modules/jstests/external_auth/assets/ldaptest-ca.pem ./mongoldap --ldapServers ldaptest.10gen.cc --ldapAuthzQueryTemplate 'cn={USER},ou=Users,dc=10gen,dc=cc?memberOf' --user ldapz_kerberos1 Running MongoDB LDAP authorization validation checks... Version: 0.0.0 Checking that an LDAP server has been specified... [OK] LDAP server found Connecting to LDAP server... [FAIL] Could not connect to any of the specified LDAP servers * Error: OperationFailed: LDAP operation <ldap_search_ext_s>, Failed to perform query: Can't contact LDAP server' Query was: 'BaseDN: "", Scope: "base", Filter: "(objectclass=*)", Attributes: "supportedSASLMechanisms", '". (-1/Can't contact LDAP server): No error could be retrieved from the LDAP server. * The server may be down, or 'security.ldap.servers' or 'security.ldap.transportSecurity' may be incorrectly configured. * Alternatively the server may not allow anonymous access to the RootDSE.
A quick glance might lead the reader to believe mongoldap actually connected to the target server.