Jerald -<br><br>That line is in there...in fact, let me paste the whole system-auth file:<br><br>#%PAM-1.0<br><br>auth            required        pam_env.so<br>auth            sufficient      pam_unix.so try_first_pass likeauth nullok<br>
auth            sufficient      pam_ldap.so use_first_pass<br>auth            required        pam_deny.so<br><br>account         required        pam_unix.so<br>account         sufficient      pam_ldap.so<br><br>password        required        pam_cracklib.so difok=2 minlen=8 dcredit=2 ocredit=2 try_first_pass retry=3<br>
password        sufficient      pam_unix.so try_first_pass nullok md5 shadow use_authtok<br>password        sufficient      pam_ldap.so use_authtok<br>password        required        pam_deny.so<br><br>session         required        pam_limits.so<br>
session         required        pam_unix.so<br>session         optional        pam_ldap.so<br><br><div class="gmail_quote"><br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
<br>
<br>Also, to let pam know about ldap, look for a line like so:<br><br>auth        sufficient    pam_ldap.so use_first_pass<br><br>in /etc/pam.d/system-auth<br><br>Also, if you want to have home directories automagically made for first-time logins, you need:<br>

<br>session     required      pam_mkhomedir.so</blockquote><div><br>Cool trick - dunno if I&#39;ll use that now but it&#39;s good to know.<br><br>Thanks,<br>Jeff </div></div><br>