Did you ever get this server configured properly for LDAPS? I'm in the same situation now. I've followed the instructions provided at http://kb2.adobe.com/cps/016/54f01608.html but it's still not working.
The problem I found is that the version of Java that ships with CPS1.11 is 1.4.2 cannot handle 4096-bit certificates. I finally solved this problem by using BouncyCastle security provider. Essentially, I followed the instructions at http://v1.safehaus.org:8080/display/PENROSE/Installing+Security+Provider
One thing worth noting: Since Sun no longer provides downloads for the "JCE Unlimited Strength Jurisdiction Policy Files" I had to download it from a third-party site (just Google it). After you copy the BoucyCastle jar files to the appropriate CPS directory and making a java.security config change, use the CPS "keytool" as explained in http://kb2.adobe.com/cps/016/54f01608.html and it should work.
One other item work noting. If you'd like to properly secure your CPS admin web interface, just follow the directions at http://www.agentbob.info/agentbob/79-AB.html