Cacti does not provide an option of providing a client side certificate for LDAP/AD authentication

[naransho]

The Settings->Auth menu allows you to select SSL or TLS encryption. However, it does not say where the client side certificate needs to be located.

[cigamit]

Looks like a number of the set_ldap_option() stuff for CERT, KEY, CRL, and DH files was only introduced in PHP 7.1. Before then, you would configure your ldap.conf file to accept all using:

TLS_REQCERT never
TLS_CACERT = /some/path.crt

I'm not really in a rush for this. However, if you would like to make a crack at a pull request, we would move it forward.

[TheWitness]

This has technically been done in 1.2.x, it's more of a documentation issue now. I'm going to close this, and then open a documentation issue.