diff --git a/roles/ldap_server/molecule/default/prepare.yml b/roles/ldap_server/molecule/default/prepare.yml
index e8f944fb1d7c27d7ea879b4a70add5ecb500d2ad..043aacd3f3f5db3aded9ab295f1f32ef457a4b65 100644
--- a/roles/ldap_server/molecule/default/prepare.yml
+++ b/roles/ldap_server/molecule/default/prepare.yml
@@ -1,5 +1,39 @@
 ---
 
+- name: Set-up fixtures
+  hosts: localhost
+  connection: local
+  gather_facts: false
+  tasks:
+
+    - name: Initialise CA hierarchy
+      command: "gimmecert init"
+      args:
+        creates: "tests/data/.gimmecert/ca/level1.cert.pem"
+        chdir: "tests/data/"
+
+    - name: Generate server private keys and certificates
+      command:
+      args:
+        chdir: "tests/data/"
+        creates: "tests/data/.gimmecert/server/{{ item.name }}.cert.pem"
+        argv:
+          - "gimmecert"
+          - "server"
+          - "{{ item.name }}"
+          - "{{ item.fqdn }}"
+      with_items:
+        - name: parameters-mandatory-stretch64.local_ldap
+          fqdn: parameters-mandatory.local
+        - name: parameters-optional-stretch64_ldap
+          fqdn: parameters-optional
+
+    - name: Set-up link to generated X.509 material
+      file:
+        src: ".gimmecert"
+        dest: "tests/data/x509"
+        state: link
+
 - name: Prepare
   hosts: all
   gather_facts: false
@@ -20,7 +54,7 @@
 
     - name: Deploy CA certificate
       copy:
-        src: tests/data/x509/ca.cert.pem
+        src: tests/data/x509/ca/level1.cert.pem
         dest: /etc/ssl/certs/testca.cert.pem
         owner: root
         group: root