Environment
Novell iManager 2.7
Situation
LUM enabled users have only a "compare" trustee to the attribute CN on the user object. LDAP client needs "Read" right for CN attribute.
Resolution
Change the CN trustee from "Compare" to "Read" and the user will be able
to log in to eDirectory using LDAP client.