Hi But tell me, is this a PAM issue or a NSS issue ? AFAIK you only need a LDAP-aware NSS library for reading authentication stuff, althrough you need PAM if you want your users to change anything stored on the LDAP server (eg, password).
I am currently testing both W2K Active Directory and OpenLDAP, with several clients (windowzs, linuxes, etc..). As I heard (and not yet tested), UNIX clients work well with W2K A.D., but Windows clients seem to fail a bit with Linux OpenLDAP servers. Do you have any info on this ? Thanks Alvaro Lopes University of Tras-os-Montes e Alto Douro - Portugal Ken Gourlay wrote: > I had 3 redhat servers and a database of about 4000 users, and PAM > would do very screwy things like request a list of all the groups > whenever a user logged in -- and the way LDAP responds, it'd take the > server at least several minutes to serve up the resulting list.
