The most common error when configuring TLS, as I have already mentioned numerous times, is that the
Common Name (CN)
you entered in
the section called “Generating the Server Certificate” is
the Fully Qualified Domain Name (FQDN) of your ldap server.
Other errors could be that you have a typo somewhere in your
command, or that
your have the wrong permissions on the
files. They should be set with
, as per
the section called “Installing the Certificates”.
For anything else, it's best to read through your ldap logfile or join the OpenLDAP mailing list.