I was trying to use the net/nss-pam-ldap to bind to ldap.jumpcloud.com with StartTLS. The nslcd daemon just dies. DEBUG logs show it when it's trying to step up the connection. Switching to ldaps:// also fails. ldap:// with 'ssl no' works fine.
nss_ldap and pam_ldap work fine using the same settings. ldapsearch with -ZZ also works fine.
FreeBSD 11.4 system with default port settings.
nss-ldapd on a Debian system works fine with StartTLS.
I should add that my 11.4 is built with openssl. I have 12.1 system that uses openssl base builds and it works fine with the same configuration.
The 11.4 seg faults.
Do you mean net/nss-pam-ldapd?
Dogh. Yeah, that's the one.