Certain properties of an LDAP or AD over LDAP connection cannot be changed once the connection has been created.
This is normal functionality of these types of connections.
To make changes you must first remove the connection before adding it back again with the amended entries. This process will not affect or reset AD user privileges within vSphere.