Full_Name: Jan Synacek Version: master OS: Linux - Fedora 19 URL: http://jsynacek.fedorapeople.org/openldap/jsynacek-20131113-0001-Fix-client-... Submission from: (NULL) (209.132.186.34)

Quoting ldap.conf(5):

TLS_REQCERT <level> ... try The server certificate is requested. If no certificate is provided, the session proceeds normally. If a bad certificate is provided, the session is immediately terminated.

There is currently no way how to "provide no server certificate" and successfully connect via a client (e.g. ldapsearch).

For additional discussion, see http://www.openldap.org/lists/openldap-technical/201311/msg00099.html.