We have two LDAP servers which are replicating against an LDAP server in the OIT/corp realm (so that our MXes can detect whether a user is a legitimate wikimedia.org account).
The current servers are dubnium.wikimedia.org and pollux.wikimedia.org and they operate against ldap1.corp.wikimedia.org. There's a new set of servers running Buster (ldap-corp1001.wikimedia.org and ldap-corp2001.wikimedia.org) which will eventually replace dubnium/pollux.
Please add those two in addition, I'll make a separate tasks when dubnium/pollux can go away. (It's my understanding that this will also need a change on OIT's end, I'll reach out to them separately).