Have you seen this re: LDAP not being a valid authentication service for SMB? I’m not sure if it also affects the integration with FreeIPA.
If so, a Samba Active Directory might be a better idea, and if you have Windows clients, it would have an administration experience like enterprises that use AD.