diff --git a/deployment_scripts/puppet/modules/plugin_ldap/templates/slapd_tls_conf.erb b/deployment_scripts/puppet/modules/plugin_ldap/templates/slapd_tls_conf.erb
index 9027108..bff85f2 100644
--- a/deployment_scripts/puppet/modules/plugin_ldap/templates/slapd_tls_conf.erb
+++ b/deployment_scripts/puppet/modules/plugin_ldap/templates/slapd_tls_conf.erb
@@ -7,12 +7,9 @@ readonly yes
 protocol-version 3
 uri "<%= @ldap_url %>"
 rootdn "<%= @user_tree_dn %>"
-tls start
+tls start tls_reqcert=demand tls_cacert=/etc/ssl/certs/
 idassert-bind   bindmethod=simple
                 binddn="<%= @user %>"
                 credentials="<%= @password %>"
                 mode=self
-                tls_reqcert=demand
-                starttls="yes"
-                tls_cacert=/etc/ssl/certs/
 idassert-authzFrom "*"