Could this be due to the way I entered the common name when creating my ca's? I used the FQDN ex:ldap2.SMB-LDAP.ORG localhost# openssl s_client -connect localhost:636 -showcert gethostbyname failure connect:errno=11 Thanks, TJ