This is off topic but the "tls_checkpeer no" fixed the sudo: ldap_start_tls_s(): Connect errors on my Centos 5.4 systems connecting to openldap 2.4.24