diff --git a/ansible/playbooks/tasks/gitlab-reconfigure.yml b/ansible/playbooks/tasks/gitlab-reconfigure.yml
index c5a4a96..0ec0cf1 100644
--- a/ansible/playbooks/tasks/gitlab-reconfigure.yml
+++ b/ansible/playbooks/tasks/gitlab-reconfigure.yml
@@ -50,6 +50,10 @@
     group: root
     state: link
 
+- name: Symlink the hash
+  command: "openssl rehash /etc/gitlab/trusted-certs"
+  changed_when: "1 != 1"
+
 - name: Turn on necessary SELinux booleans
   ansible.posix.seboolean:
     name: "{{ item }}"
diff --git a/ansible/playbooks/vars/gitlab.yml b/ansible/playbooks/vars/gitlab.yml
index dc6e7c1..443b1ae 100644
--- a/ansible/playbooks/vars/gitlab.yml
+++ b/ansible/playbooks/vars/gitlab.yml
@@ -29,7 +29,7 @@ gitlab_ldap_bind_dn: "{{ rocky_ldap_bind_dn }}"
 gitlab_ldap_password: "{{ rocky_ldap_bind_pw }}"
 gitlab_ldap_base: "{{ rocky_ldap_user_basedn }}"
 gitlab_ldap_group_dn: "{{ rocky_ldap_group_basedn }}"
-gitlab_ldap_admin_group: "cn=gitadm,cn=groups,cn=accounts,dc=rockylinux,dc=org"
+gitlab_ldap_admin_group: "gitadm"
 gitlab_ldap_user_filter: "(&(objectClass=posixAccount)(memberOf=cn=gitusers,cn=groups,cn=accounts,dc=rockylinux,dc=org))"
 
 gitlab_time_zone: "UTC"