Related to #144
So far, non-TLS LDAP authentication was implemented. Adding ldaps:// support will involve adding certs provided for the LDAP server to the central trust store.
This task will probably involve modifying exising TLS-related code, and has been split out for clarity.
