Comment 35 for bug 64301

Sorry to awaken such an old thread, but in case anyone is still having problems with this, I was able to get it working perfectly in my environment. I was experiencing the original issue and I tried the MattPie/Emu solution from posts #20/21, but I was still receiving two password prompts for local users. I ended up taking their suggestions and coming up with this:

I did not have to change anything in /etc/pam.d/gnome-screensaver. Instead, I made the first two lines in /etc/pam.d/common-auth file read as follows:

auth [success=2 default=ignore] pam_ldap.so
auth [success=1 default=ignore] pam_unix.so nullok_secure use_first_pass

Using this configuration, both local users and ldap users can log into the desktop AND unlock the screensaver by entering their password only once. I cannot speak to how well this works with an encrypted ldap setup.