When trying to connect Identity Manager on mainframe environment using LDAP the error "Invalid SSL Format" was received.
The ESM product (ACF2, Top Secret and others) uses StartTLS to convert an insecure connection to a secure one using SSL, so LDAP needs to have enabled both ldap and ldaps ports in order to make it happen.
On slapd.conf file the parameter hosturls should have both ldap and ldaps ports coded. See the example bellow:
hosturls ldap://:389 ldaps://:390