Straight from the Gentoo + LDAP page.<br><br># pam ldap stuff<br>auth sufficient pam_ldap.so use_first_pass<br>account sufficient pam_ldap.so<br>password sufficient pam_ldap.so use_authtok use_first_pass<br> session optional pam_ldap.so<br><br>-james<br><br><div class="gmail_quote">On Wed, Nov 3, 2010 at 15:13, Stroller <span dir="ltr"><<a href="mailto:stroller@stellar.eclipse.co.uk">stroller@stellar.eclipse.co.uk</a>></span> wrote:<br> <blockquote class="gmail_quote" style="margin: 0pt 0pt 0pt 0.8ex; border-left: 1px solid rgb(204, 204, 204); padding-left: 1ex;"><div style="word-wrap: break-word;"><br><div><div>On 3/11/2010, at 4:25pm, James wrote:</div> <blockquote type="cite"><font color="#000000">...<br></font><div class="im">I'm attempting to set up LDAP authentication against my OpenDS server on a Gentoo box. I've been struggling with this for several days now with no progress.<br> <br>Here's the rundown of how things are configured (fairly straight forward):<br></div>...</blockquote><div class="im"><blockquote type="cite">==> auth.log <==<br>Nov 3 06:26:03 <a href="mailto:s_dgram@client.whatever.com" target="_blank">s_dgram@client.whatever.com</a> sshd[2650]: error: PAM: Authentication failure for tb from <a href="http://blah.whatever.com/" target="_blank">blah.whatever.com</a><br> </blockquote></div></div><br><div>You've shown us all about your LDAP configuration, but nothing about your PAM configuration, or whether sshd or IMAP are configured to use PAM.</div><div><br></div><font color="#888888"><div> Stroller.</div><div><br></div></font></div></blockquote></div><br>