2012/6/20 Francesco Belli <Francesco.Belli(a)vegaspace.com>:
I already used pam_password directive, I set it to cleartext, but this parameter is used
for password change and not for authentication. As man pam_ldap says "Specifies the
password change protocol to use", so not the authentication method. Now my situation
is that I have some users in the LDAP server that they have a SHA hash in the userPassword
field, and they are correctly authenticated, others that have a clear text password and
cannot be authenticated via PAM.
Password scheme used in LDAP directory do not prevent any application
to authenticate to LDAP. Dig into logs to see what is the real reason
of your problem.