Add an option to disable LDAPS Certificate verification

[Augustin-FL]

By default, DotNet (which SharpHound uses) perform strong verification of LDAPS TLS certificates.
This is unlike bloodhound-python which does not verify SSL on its queries.

DotNet TLS verification is notoriously tricky, and sometimes fail even trough the certificate is perfectly valid (For instance, because the CRL cannot be reached or because TLS 1.3 can't be used..). This can be a problem when running bloodhound in LDAPS-only environments.

This PR add an option to disable verification of the TLS certificate when doing LDAPS queries

(Related to SpecterOps/SharpHoundCommon#30)

[rvazarkar]

Please rebase against the most recent build

[Augustin-FL]

Done

[rvazarkar]

Not sure why, but the build is still failing. I updated the CommonLib to include the new param, but its not showing up.

[rvazarkar]

I'm just going to go ahead and do the work myself and credit you. I'll close this MR afterwards. Thanks for the work!

[Augustin-FL]

Hi @rvazarkar,

Thanks for the commit !
Just a question: I'm seeing you you didn't update src/Client/Flags.cs. Is it intentional ?

[rvazarkar]

Yep, its not needed since we're just passing it directly into the LDAPConfig, and we're not using it elsewhere