Geo: Container registry on secondary LDAP 401

We have enabled container registry on a Geo secondary using S3 for storage. LDAP is enabled on the primary but not on the secondaries. When running docker login against the primary registry, LDAP users are authenticated correctly. When running docker login against the secondary registry, LDAP users get Access Denied (401). We are able to log in using the root user.

The Geo LDAP documentation recommends running a secondary LDAP server for the secondary. In this case, this is not a simple feat. Is there a possible workaround?

Customer ticket -> https://gitlab.zendesk.com/agent/tickets/92604 (internal)

/cc @stanhu @jramsay