"message":"unexpected error during upstream LDAP authentication","warning":true,"error":"error searching for user: LDAP Result Code 4 \"Size Limit Exceeded\": ",
TKG 2.3 Standalone Management Cluster LDAP configuration uses Pinniped for all versions of TKG. In TKG 2.2 Standalone Management Cluster and before, Pinniped used Dex to perform all interaction with the LDAP server. Starting in TKG 2.3 Standalone Management Cluster,, Pinniped directly interacts with the LDAP server, and Dex as an LDAP shim is no longer used..
This means that user and group queries may require some changes to be compatible with the Pinniped LDAP configuration. See resolution.
Review the upgrade steps documented in the TKG 2.3 Standalone Management Cluster documentation to see if changes are required.
https://docs.vmware.com/en/VMware-Tanzu-Kubernetes-Grid/2.3/tkg-deploy-mc/mgmt-deploy-config-ref.html#identity-management-ldap (search for pinniped format)