From 7c54782cc8244879d6cbc037980276fc5ca2f4da Mon Sep 17 00:00:00 2001
From: Falk Stern <fstern@goodgamestudios.com>
Date: Mon, 16 Nov 2015 10:24:16 +0100
Subject: [PATCH 1/2] Moved auth_ad_dont_check_certificates to
 auth_ad_check_certificates

---
 html/includes/authentication/active_directory.inc.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/html/includes/authentication/active_directory.inc.php b/html/includes/authentication/active_directory.inc.php
index 88504a665c..a562ae9010 100644
--- a/html/includes/authentication/active_directory.inc.php
+++ b/html/includes/authentication/active_directory.inc.php
@@ -3,8 +3,8 @@
 // easier to rewrite for Active Directory than to bash it into existing LDAP implementation
 
 // disable certificate checking before connect if required
-if (isset($config['auth_ad_dont_check_certificates']) &&
-          $config['auth_ad_dont_check_certificates'] > 0) {
+if (isset($config['auth_ad_check_certificates']) &&
+          $config['auth_ad_check_certificates'] == 0) {
     putenv('LDAPTLS_REQCERT=never');
 };
 

From dda8ffd400f2a1663830b39c238fa41831a482f9 Mon Sep 17 00:00:00 2001
From: Falk Stern <fstern@goodgamestudios.com>
Date: Mon, 16 Nov 2015 10:25:13 +0100
Subject: [PATCH 2/2] Updated Documentation for 'auth_ad_check_certificates'

---
 doc/Extensions/Authentication.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/doc/Extensions/Authentication.md b/doc/Extensions/Authentication.md
index d7c526d36d..48ad0e92fd 100644
--- a/doc/Extensions/Authentication.md
+++ b/doc/Extensions/Authentication.md
@@ -108,7 +108,7 @@ Config option: `active_directory`
 
 This is similar to LDAP Authentication. Install __php_ldap__ for CentOS/RHEL or __php5-ldap__ for Debian/Ubuntu.
 
-If you have issues with secure LDAP try setting `$config['auth_ad_dont_check_certificates']` to `1`.
+If you have issues with secure LDAP try setting `$config['auth_ad_check_certificates']` to `0`.
 
 ##### Require actual membership of the configured groups
 
@@ -118,7 +118,7 @@ If you set ```$config['auth_ad_require_groupmembership']``` to 1, the authentica
 
 ```
 $config['auth_ad_url'] = "ldaps://your-domain.controll.er";
-$config['auth_ad_dont_check_certificates'] = 1; // or 0
+$config['auth_ad_check_certificates'] = 1; // or 0
 $config['auth_ad_domain'] = "your-domain.com";
 $config['auth_ad_base_dn'] = "dc=your-domain,dc=com";
 $config['auth_ad_groups']['admin']['level'] = 10;