Steve Rigler schrieb: > It has a lot to do with user root if you use rootbinddn in > "/etc/ldap.conf" and put the password into "/etc/ldap.secret" which > should only be readable by root. You are right but I even set the permissions on ldap.secret to 0644 to be sure that there are no acl problems. I expected that nscd would use rootbinddn if ldap.secret was readable for the user "nscd". fs PS: This was on a test machine, I won't ever make ldap.secret world readable in a production environment.