Added this SSL Info functionality this week. I am likely to still change it up a little. I would like to see if I can report on the server cert too. And maybe see about this going into a CSV/TSV type output format as well since it is well outside the normal code path.
Beta drop to the web site in the next week I would say… It got delayed because I started decoding msDS-RevealedUsers for RODC computer objects. That BLOB was a little different than I expected and it took a bit but I got it sorted. In the meanwhile while thinking that issue out I realized I wanted to give out info about the LDAPS connection too.
E:\>adfind -ssl -rootdse -sslinfo
AdFind V01.50.00.00cpp VS BETA Joe Richards (support@joeware.net) April 2016
SSL Connection Information
protocol = Transport Layer Security 1.0 client-side (SP_PROT_TLS1_CLIENT)
cipher algorithm = AES 256-bit encryption algorithm (CALG_AES_256)
cipher strength = 256 bits
hash algorithm = SHA hashing algorithm (CALG_SHA) bits
hash strength = 160 bits
key exch algorithm = Ephemeral elliptic curve Diffie-Hellman key exchange (CALG_ECDH_EPHEM)
key exch strength = 256 bits
The command completed successfully
