i ran into the same issue and getting the exception while creating ldap.ora with netca.
ConfigException: Could not check for the Oracle Schema: oracle.net.config.ConfigException: TNS-04411: Directory service: permission denied
caused by: oracle.net.config.DirectoryServiceException: TNS-04411: Directory service: permission denied
caused by: oracle.net.ldap.NNFLException
and according to Doc ID 1492761.1 oracle support document I double checked the ACL's, and it seems ok.
Have you solved the issue? Is there anything else to check?
I'm still wondering what that could be because I checked everything on mine installation and it doesn't work. The only one thing which is weird is - in Manual they say that SSL listener should be configured with No-Auth mode. But I tried to connect to this listener as anonymous and I failed to do that.