Glyn Astill <glynastill@xxxxxxxxxxx> writes: > I'm having what's hopefully a fairly trivial issue here with pg_hba.conf in 9.0.4; when I add in the following line > host all +ad_users 10.10.0.0/16 ldap <ldap details> > If I try to log in with a superuser account from the 10.10.0.0/16 network it appears to try to authenticate it against that entry via ldap. > This didn't happen in 8.4.8, what could I be missing? Well, a superuser is automatically considered a member of any group, so a match to that line would be expected IMO. If you don't want that, you need some more-specific line ahead of it to catch superusers. regards, tom lane -- Sent via pgsql-admin mailing list (pgsql-admin@xxxxxxxxxxxxxx) To make changes to your subscription: http://www.postgresql.org/mailpref/pgsql-admin