I use now extensively lib(pam|nss)-ldap and was really tired having to forge my .ldif to add users.

Since I don't need samba, smbldap-tools does not work (I don't use samba.schema whatever the name is)...

So I discovered ldapscripts, those worked, even if they don't provide a lot of functionnalities. At least, you can :

  • add/delete users
  • add/delete groups
  • add/remove users from groups
  • change the default group of your users

I've just written some bits of magic that make the ldapscripts discover its settings from libpam-ldap and adduser config files, so that the average user will see those script work out from the box after having configured libpam-ldap.

Now I'm a fully happy pam-ldap user.

And btw, I've submitted an ITP, and look at the magic :

  • Bug#324296 ACK : 6:33:21 -700
  • ldapscripts_1.2-2_amd64.changes is NEW : 08:02:04 -0700
  • ldapscripts_1.2-2_amd64.changes ACCEPTED : 13:48:32 -0700

w00t