# (e.g., /etc/shadow, LDAP, Kerberos, etc.). The default is to use the
# traditional Unix authentication mechanisms.
#
-auth required pam_unix.so nullok_secure
+#
+# Default was:
+# auth required pam_unix.so nullok_secure
+#
+# LDAP config based on from http://wiki.debian.org/LDAP/PAM
+auth required pam_ldap.so