Hi Brad - the only suggestion I would have is to try to support SOME backward compatibility (e.g. if StartTLS directive is used switch the url to ldaps or something like that).
Looks like great progress for the software, though - I too would like to see it committed. sterling
