Configuring Active Directory LDAP SSL for Windows 20xx server using Microsoft Certificate Services2018-09-05 10:12:13
Active Directory LDAP SSL
By default all communications with LDAP servers (including Active Directory) are non-encrypted. This means any data (including credentials) will be sent in the clear. In order to protect your data and credentials you must configure your domain controller to allow SSL communications. In order to do this you must install an encryption certificate on the domain controller you wish to communicate with.
For more information and instruction for your specific server version up to server 2012r2, please visit Microsoft Technet for more information.
Another Microsoft article includes up to server 2016, available on the Microsoft Developer site.