Thomas Harding <tom@xxxxxxxxxxxxxxxxxxx> wrote: > Why don't use an Openldap instance as proxy ? Or what about using PAM? It's designed for exactly this "stacking". We have saslauthd configured to talk to PAM, and then two different KRB servers stacked up. If auth fails on one, it tries the next. You could do the same for LDAP. g