I have installed AD In test environment.
I used following command
Blcred –x certStore.pem cert –add –host WIN-VP329E229V6:389 –protocol ldap
Error: Rejected the certificate from WIN-VP329E229V6:289
blcred -x -import config pki ldap
is your DC listening on 389 and running startls ?
why are you setting up ldap auth if you have ad? why not use the domain or ADK auth types ?