FYI, the ldap setup is to create rules and for reporting on users/groups for granular policy settings/monitoring.
the only way to know a user is authenticated is that with single sign on set and the DC agent installed properly. the green light is to tell that the server is there and available to communicate, it does not show that it is receiving anything from the DC or that the DC is not setup properly from the solution details. The account view page is the mirror of what the DCs are seeing and reporting tot the security filter and then being poled there from the Web Filter. If the events are not showing, the issue resides on the Dc setup, Agent install (run as admin) and configuration, .netframework version, DC updates and DC reboot possibly, DC service issues, DC Agent version, MS issue with events not showing up, WMI issues, DC controller policy changes/ miss-configuration. and a few more possible things.
You see why there is no simple answer on this.