From fbe164e2db7e9142299b38618f02fab08f4315d6 Mon Sep 17 00:00:00 2001
From: Markus Hauschild <markus@moepman.eu>
Date: Mon, 15 Feb 2016 19:21:17 +0100
Subject: [PATCH] Enable TLS for LDAP in postfix.

---
 roles/mail/templates/ldap-aliases.cf.j2      | 3 +++
 roles/mail/templates/ldap-virtual-maps.cf.j2 | 3 +++
 2 files changed, 6 insertions(+)

diff --git a/roles/mail/templates/ldap-aliases.cf.j2 b/roles/mail/templates/ldap-aliases.cf.j2
index bf2933f..430550e 100644
--- a/roles/mail/templates/ldap-aliases.cf.j2
+++ b/roles/mail/templates/ldap-aliases.cf.j2
@@ -1,4 +1,7 @@
 server_host = {{ ldap_host }}
+start_tls = yes
+#tls_ca_cert_file = 
+#tls_require_cert = yes
 bind = yes
 bind_dn = {{ ldap_binddn }}
 bind_pw = {{ ldap_bindpw }}
diff --git a/roles/mail/templates/ldap-virtual-maps.cf.j2 b/roles/mail/templates/ldap-virtual-maps.cf.j2
index 7afd155..f6272a2 100644
--- a/roles/mail/templates/ldap-virtual-maps.cf.j2
+++ b/roles/mail/templates/ldap-virtual-maps.cf.j2
@@ -1,4 +1,7 @@
 server_host = {{ ldap_host }}
+start_tls = yes
+#tls_ca_cert_file = 
+#tls_require_cert = yes
 bind = yes
 bind_dn = {{ ldap_binddn }}
 bind_pw = {{ ldap_bindpw }}