diff --git a/roles/ldap_client/molecule/default/playbook.yml b/roles/ldap_client/molecule/default/playbook.yml
new file mode 100644
index 0000000000000000000000000000000000000000..c110bb100dec50bca3f82f8c8cbcd5263a51e24f
--- /dev/null
+++ b/roles/ldap_client/molecule/default/playbook.yml
@@ -0,0 +1,24 @@
+---
+
+- hosts: parameters-mandatory
+  become: yes
+  roles:
+    - ldap_client
+
+- hosts: parameters-optional
+  become: yes
+  roles:
+    - role: ldap_client
+      ldap_client_config:
+        - comment: CA truststore
+          option: TLS_CACERT
+          value: /etc/ssl/certs/testca.cert.pem
+        - comment: Ensure TLS is enforced
+          option: TLS_REQCERT
+          value: demand
+        - comment: Default URI to connect to
+          option: URI
+          value: ldaps://ldap-server/
+        - comment: Base entry
+          option: BASE
+          value: dc=local