I have my linux (RH7.1) running fine ldap for authenticate my users, but I have in my sladp.conf: defaultaccess read Now I want to introduce some security system, what about sasl, ssh ... ? I'm so confused ... I think I have to use something like: access to attr=userPassword by self write by dn="cn=Manager,dc=example,dc=com" write by * compare but with it I can't authenticate users. Any idea ? Thanks.