Command prompt to check TLS version required by a host

Is there a command to check the TLS version required by a host site? Right now, the only way I know to check is by adjusting the max TLS version of my browser and checking if I can still access the site. However, I suspect there is a more sophisticated way to do this.

Solution

You can check using following commands.

For TLS 1.3:

openssl s_client -connect www.google.com:443 -tls1_3

For TLS 1.2:

openssl s_client -connect www.google.com:443 -tls1_2

For TLS 1.1:

openssl s_client -connect www.google.com:443 -tls1_1

For TLS 1:

openssl s_client -connect www.google.com:443 -tls1

If you get the certificate chain and the handshake then the TLS version is supported. If you don't see the certificate chain, and something similar to "handshake error" then its not.

How to force Laravel Project to use HTTPS for all routes?
Python SSL default context not including TLS 1.1 or SSL 2 ciphers
Creating self signed certificate for domain and subdomains - NET::ERR_CERT_COMMON_NAME_INVALID
javax.net.ssl.SSLHandshakeException: Received fatal alert: unknown_ca
How to simulate non-SNI browsers (without SNI support)?
How to access phpmyadmin on DDEV Windows 10 pro localhost with SSL record too long error
cURL with SSL certificates fails: error 58 unable to set private key file
Specifying Arduino WiFiClientSecure Certificates
maxscale cannot find gtid_binlog_pos
FreeSWITCH TLS error in 'Client Hello' Request
ASP.NET Core Development Certificates - error exporting the HTTPS developer certificate
Get certificate's public key in the PKCS8 format
Why is Firefox not trusting my self-signed certificate?
Difference between pem, crt, key files
Is it a good idea to distribute docker image containing my selfsigned certificate?
PKIX path building failed: unable to find valid certification path to requested target on chaincode commit on Hyperledger Fabric production network
OkHTTP (v3.0.0-RC1) Post Request with Parameters
SSL handshake error (CERTIFICATE_VERIFY_FAILED) in grpc++
Convert .pem to .crt and .key
How can I decode a SSL certificate using python?
How to Create Secure(TLS/SSL) Websocket Server
The client and server cannot communicate, because they do not possess a common algorithm - ASP.NET C# VB Visual Basic IIS TLS 1.0 / 1.1 / 1.2
javax.net.ssl.SSLException: Certificate for <> doesn't match any of the subject alternative names: []
Spring Boot 3.4.1 SSLBundle with pem configuration inside application.yml
MSSQL with SSL: The target principal name is incorrect
How can I add a Subject to my email to send via SMTP?
SSL module in Python is not available (on OSX)
Spring Boot 3.4 new feature : How to config SSLBundle works with RestClient?
postgres r2dbc gives ssl error but connects using jpa
Can Spring Boot's SSLBundle work with certificates without CA (just mutual authenticated, not CA)?