Craig, Thanks for the info on FreeIPA. It sounds like you have quite a bit of experience with LDAP. Maybe you can answer some questions. In the past when I tried to configure LDAP with nsswitch, I remember that I had to put the Admin credentials in a file in /etc. Also, at the time ldap did not support ssl ( it was a long time ago :-) ) Can LDAP be used on client systems now where the credentials are secure? I didn't like the idea of having basically the root password in cleartext on every system. The same goes for using ldap to authenticate to an apache server. I would like to try again, but last time I spent weeks on getting it configured and found it easy to basically own the ldap server. --------------------------------------------------- PLUG-discuss mailing list - PLUG-discuss@lists.plug.phoenix.az.us To subscribe, unsubscribe, or to change your mail settings: http://lists.PLUG.phoenix.az.us/mailman/listinfo/plug-discuss