DLP 9.3 does not use the registered LDAP server but rather the local system you are running the ePO GUI on. More information can be found in KB79364.
Thank you for replying, couple of questions however.
"McAfee ePolicy Orchestrator (ePO) 4.6, 4.5" We are on 5.1.3 currently, do these KBs apply to an updated environment? Since you stated DLP uses the local system instead of the registered LDAP through ePO I wouldn't think so.
Our ePO is also off the domain with an established trust in place, but when DLP prompts for Forest Name/Credentials would that be the system with the ePO gui installed as you said? Seems like it should be one of the registered LDAPs with domain access?
The KB you listed links to two other KBS, one being non-domain DLP use but has no other further information that is helpful in this situation.
Any further assistance is still appreciated, thank you.