It's a sadly a bit true.

I like OpenLDAP a lot.... but if you don't need the *fastest* LDAP server, something as OpenDJ from Forgerock
is a lot easier to configure.

But is a problem with LDAP in general. If you only use it for authentication/authorization,
it's complex to get everything 100% right. (on the other side, it's very flexible.)
That's the reason why Red Hat created it's FreeIPA product, isn't it (and a lot of sysadmins create users using configuration management tools)
Some other (big) companies only have central SSH hosts and from those hosts use root.

AD is an exception with LDAP complexity well hidden away. But if you see the results .... there is a lot to say about the directory designs I have seen ;-)

On Thu, Jan 30, 2014 at 5:07 PM, Gavin Henry <> wrote:

Any one been in touch with them?

Kind Regards,

Gavin Henry.
Managing Director.

T +44 (0) 1224 279484
M +44 (0) 7930 323266
F +44 (0) 1224 824887

Open Source. Open Solutions(tm).

Suretec Systems is a limited company registered in Scotland. Registered
number: SC258005. Registered office: 24 Cormack Park, Rothienorman,
Aberdeenshire, AB51 8GL.

Subject to disclaimer at

Do you know we have our own VoIP provider called SureVoIP? See

OpenPGP (GPG/PGP) Public Key: 0x8CFBA8E6 - Import from hkp://