I'll hit up on the FQDN issue. I don't think though, that the LDAP server has a DNS entry. I'm assuming that if they don't, I can do it with a host entry.
On your second correction, the corrected version is what I had at one time, I dropped it attempting things.
However, I think your last recommendation is the correct one. I had pretty much decided that it was a cert issue, but couldn't get the exact information on what I needed to do to correct it. Your blog looks like it had it all along. Will try that this evening or tomorrow, and see what I get.
If your server doesn't have a DNS entry, then it probably has a self-signed certificate too. If this is the case, you'll have to put the following into your ldap.conf:
TLS_REQCERT never
V/r,
Ryan Lane