Hi, I am curerntly putting together a system to create a central authentication and have a problem with solaris machines to log in to openldap with sshkey that are stored in openldap. I have found a thread: http://www.openldap.org/lists/openldap-software/200710/msg00041.html that talks about the issue: it seems as if this control is needed in the rootdse request control has an OID of 1.3.6.1.4.1.42.2.27.9.5.8 Problem is I have no idea how to put that in? Do I have to create a special ppolicy? If yes, could you please help? Got any idea? many thanks, Csaba http://man7.org/linux/man-pages/man5/slapo-ppolicy.5.html