Stephen Frost said: > Basically the problem here is real simple: OpenLDAP 2.1 actually checks > the certificate, which can't be self-signed, and 2.0 doesn't. To build > proper certificates look at the OpenLDAP FAQ. thanks! copying the CA cert over and adding the TLS_CACERT and pointing it to the cacert file, and it started working immediately :) nate