----- "Stephen Gallagher" <sgall...@redhat.com> wrote: > Also with SSSD in play, you don't need pam_ldap.so in your > /etc/pam.d/system-auth.
More that that, you do not "wangt" it, or you have side effects like bad passwords being tried twice (once through sssd and then through pam_ldap), making it easier to lock accounts, and in general slowing down unnecessarily the login process (esp. offline). Simo. _______________________________________________ sssd-devel mailing list sssd-devel@lists.fedorahosted.org https://fedorahosted.org/mailman/listinfo/sssd-devel