They might be the same account, but they are not the same DN. The values you enter into the role-mapping file are textual DNs, they have to match precisely with whatever the LDAP server uses as the DN when ES authenticates.
You're going to have to provide more information than that. I can't guess what the problem is, you need to provide the exact details including logs.