On Wed, 2009-11-25 at 11:07 +0100, dan kakon wrote:
I not see a password in a shadow file, id user.
Nor should you. Neither /etc/passwd nor /etc/shadow should contain any
reference to your LDAP users. If things are set up right, though, you
should be able to view them as NSS sees them with 'getent passwd' and
'getent shadow'. Depending on how you chose to set things up, there may
be no shadow entries at all. Arguably, you don't need the shadow
information for LDAP users, if password expiration and account vailidity
are all being enforced at the directory server level.
--