--- /usr/lib/python2.7/site-packages/ldap2pg/ldap.py.orig	2022-03-17 14:52:58.974806660 +0100
+++ /usr/lib/python2.7/site-packages/ldap2pg/ldap.py	2022-03-17 15:03:47.449618132 +0100
@@ -293,6 +293,7 @@
 
     if options.get('STARTTLS'):
         logger.debug("Sending STARTTLS.")
+        conn.set_option(ldap.OPT_X_TLS_CACERTFILE, '/etc/pki/tls/cert.pem')
         conn.set_option(ldap.OPT_X_TLS_NEWCTX, 0)
         conn.start_tls_s()