nss_ldap.conf:base dc=mylocaldomain,dc=ru
bind_policy soft
bind_timelimit 10
host 127.0.0.1
ldap_version 3
nss_base_group ou=Group,ou=Samba,dc=mylocaldomain,dc=ru?one
nss_base_passwd ou=Users,ou=Samba,dc=mylocaldomain,dc=ru?one
nss_base_passwd ou=Computers,ou=Samba,dc=mylocaldomain,dc=ru?one
nss_base_shadow ou=Users,ou=Samba,dc=mylocaldomain,dc=ru?one
nss_connect_policy persist
nss_paged_results yes
port 389
scope one
timelimit 30
uri ldap://127.0.0.1
directory /var/db/openldap-data
suffix "dc=mylocaldomain,dc=ru"
rootdn "cn=root,dc=mylocaldomain,dc=ru"
rootpw {SSHA}xxxxxxxxxxxxxxxxxxxxxxxxx
#binddn cn=root,dc=mylocaldomain,dc=ru
#bindpw xxxxxxxxxxxxxx
pam_filter objectclass=posixAccount
pam_login_attribute uid
pam_member_attribute gid
pam_password crypt
index cn, sn, uid, gidnumber pres, eq, approx
index objectclass pres,eq
dbcachesize 500000
index default none