David, the disadvantage of placing pam_ccred before pam_ldap in the stack is that the password will be validated first against the local cache. If it have just been updated, the old one will still work for a little while, which is not good in most circumstance.
David, the disadvantage of placing pam_ccred before pam_ldap in the stack is that the password will be validated first against the local cache. If it have just been updated, the old one will still work for a little while, which is not good in most circumstance.