We've an ldap server and clients configured to authenticate users against it. Everything is working fine apart that I saw in the ldap server logs that says that the clients also contact the ldap server to authenticate users as root, apache etc, how to disable that ?
Thanks
Best Answer
For posterity, finally resolved the problem with Centos clients by adding the parameter nss_initgroups_ignoreusers in /etc/nslcd.conf, not in /etc/pam_ldap.conf nor in /etc/openldap/ldap.conf. Not sure why but that was the only case that worked.