It sounds that there is an issue with connecting to the LDAP service (you can authenticate w/ kinit but can't browse the directory). It could be server's firewall but I suspect you are not having an issue with Linux workstations. Mac OS's directory services setup is likely the issue, if in Directory Utility > Directory Editor with a freeIPA node selected there are no objects. I'd verify that the server's public cert is installed on the workstation and working (web browse from workstation to freeIPA server). If the cert test works, delete the LDAPv3 service from the Directory Utility and rebuild the service configuration.