Setup Secure LDAP over SSL/TLS (LDAPS) for PostgreSQL

Haven’t had much luck while trying several ways to implement LDAPS for PostgreSQL. **pg_hba.conf** hostssl all +test_ldap 0.0.0.0/0 ldap ldapserver=dc2.ad.foobar.com ldapport=636 ldapscheme=ldaps ldaptls=0 ldapbinddn="CN=ldap,OU=Helpers,OU=Foobar,DC=ad,DC=foobar,DC=com" ldapbindpasswd=*** ldapsearchattribute=mail ldapbasedn="OU=Users,OU=Foobar,DC=ad,DC=foobar,DC=com" Upon research, I found out that the below params are to be changed. **postgresql.conf** ssl = on ssl_cert_file = 'server.crt' ssl_key_file = 'server.key' The question is how do I get .crt and .key from the .pem certificate that I already have (shared by LDAP team). Apart from these what else needs to be done to make it work with LDAPS (SSL/TLS).