Package: libpam-ldap Version: 164-2 Severity: normal I tried to use pam_groupdn in my pam_ldap.conf, but I couldn't get it to work. After much research and debugging I realized that it should be of class groupOfUniqueNames. It can be of another class but at least the attribute in "pam_member_attribute" has to contain DN:s not posix user id:s.
At least it should be noted in the pam_ldap.conf manual page, that the attribute in pam_member_attribute needs to contain DN:s, not posix user id:s. I think a useful extension is to match against posix user id:s if pam_member_attribute is "memberUid". At the same time you can correct the spelling error "uniquememeber". Regards, Mikael Magnusson -- System Information: Debian Release: 3.1 APT prefers testing APT policy: (950, 'testing'), (900, 'testing'), (150, 'unstable'), (100, 'unstable') Architecture: i386 (i686) Kernel: Linux 2.6.8-1-k7 Locale: LANG=sv_SE.UTF-8, LC_CTYPE=sv_SE.UTF-8 (charmap=UTF-8) Versions of packages libpam-ldap depends on: ii debconf 1.4.30.11 Debian configuration management sy ii libc6 2.3.2.ds1-20 GNU C Library: Shared libraries an ii libldap2 2.1.30-3 OpenLDAP libraries ii libpam0g 0.76-22 Pluggable Authentication Modules l -- debconf information excluded -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]