Dear all,

I am stuck with LDAP not starting after a otherwise straightforward install.
After building debs from the latest RPM binaries and tweaking install, util and pre/postinstall scripts to recognise sid etc... slapd is not starting.

Setting local config values...Done
Setting up CA...Done
Creating SSL certificate...Done
Initializing ldap...FAILED (256)


Configuration failed

After starting slapd manually with debugging switched on:
udo /opt/zimbra/openldap/libexec/slapd -4 -h "ldap://:389" -f /opt/zimbra/conf/slapd.conf -d 5001

I get a TLS error at the very end:

(#) $OpenLDAP: slapd 2.2.28 (Nov 9 2005 12:31:52) $
daemon_init: listen on ldap://:389
daemon_init: 1 listeners to open...
daemon: initialized ldap://:389
daemon_init: 1 listeners opened
slapd init: initiated server.
slap_sasl_init: initialized!
bdb_back_initialize: initialize BDB backend
bdb_back_initialize: Sleepycat Software: Berkeley DB 4.2.52: (December 3, 2003)
>>> dnNormalize:
=> ldap_bv2dn(cn=Subschema,0)
<= ldap_bv2dn(cn=Subschema)=0 Success
=> ldap_dn2bv(272)
<= ldap_dn2bv(cn=subschema)=0 Success
TLS: could not load client CA list (file:`/opt/zimbra/conf/ca/ca.pem',dir:`').
TLS: error:0906D06C:PEM routines:PEM_read_bio:no start line pem_lib.c:644
main: TLS init def ctx failed: -1
slapd shutdown: freeing system resources.
slapd stopped.
connections_destroy: nothing to destroy.

Openssl is installed, the certificates are all created,

I am out of my depth with LDAP and need some serious advise on where to look next.

Thank you!