my ($ldap) = @_;
my $mesg = $ldap->start_tls(
verify => 'require',
- # Cannot specify the server cert, must specify the CA cert
- #cafile => '/etc/ssl/servicecerts/db.debian.org.crt'
- #cafile => '/etc/ssl/certs/UTN_USERFirst_Hardware_Root_CA.pem'
- cafile => '/usr/share/ca-certificates/mozilla/AddTrust_External_Root.crt'
+ cafile => $config{sslcafile},
);
$mesg->sync;
if ($mesg->code != LDAP_SUCCESS) {