Our code base connects to our Active Directory through the ldap_*
functions. I just learned this morning that they're connecting to our AD over TLS 1.0.
Question 1: Is there a way to force the ldap_*
functions to connect over TLS 1.2?
Other info:
- Windows 2012 R2
- PHP 5.3
- IIS 8.5
I've tried googling stuff like "enable "tls 1.2" ldap php," ""tls 1.2" ldap php," "ldap php functions support tls 1.2" and results have been unhelpful. I've found comments on three locations that say that Windows 2012 R2 doesn't support TLS 1.2 through LDAPS and to disable TLS 1.2, but ... that's the opposite of what I want, and so far there have been no issues with not specifically disabling TLS 1.2 in the code base.
Followup Question: Do the ldap_*
functions still not support TLS 1.2 on Windows 2012 R2 with PHP?