I read admin for slapd.conf. I noticed that it seemed to talk heavily about having to have sasl in order to use kerberos. My question is: Is it possible to by pass sasl all together and have ldap authenticate off of the kdc directly? That is if I can configure a regular user to check the kdc rather than the passwd file can I do the same for ldap. (via pam.d and pam.conf) Josef De Vaughn Allen z