Other leftovers.

defaults/main.yml

@@ -1,7 +1,8 @@
 ---
 ldap_uri: "ldap://ldap.example.org"
 ldap_base_dn: "dc=example,dc=org"
-ldap_tls_deb_cacert: /etc/ssl/certs/ca-certificates.crt
+ldap_tls_deb_cacert_dir: /etc/ssl/certs
+ldap_tls_deb_cacert: '{{ ldap_tls_deb_cacert_dir }}/ca-certificates.crt'
 ldap_version: 3
 ldap_nss_ignoreusers: 'avahi,backup,bin,daemon,games,gnats,irc,libuuid,list,lp,mail,man,messagebus,munin,news,nslcd,proxy,root,sshd,sync,sys,syslog,uucp,www-data'
 

templates/nslcd.conf.j2

@@ -14,8 +14,8 @@ base {{ ldap_base_dn }}
 
 # The LDAP protocol version to use.
 ldap_version 3
-tls_cacertdir /etc/ssl/certs
-tls_cacertfile {{ r_connector_nslcd_cafile }}
+tls_cacertdir {{ ldap_tls_deb_cacert_dir }}
+tls_cacertfile {{ ldap_tls_deb_cacert }}
 
 {% if nslcd_authenticated_bind %}
 # The DN to bind with for normal lookups.