(PHP, Apache, etc.) Is anyone familiar with this topic? Is anyone missing a feature because the web stack components don't use OpenLDAP? Are the re compelling reasons to use OpenLDAP instead of Solaris LDAP?
Apache LDAP auth is a little more full-featured with OpenLDAP (STARTTLS and possibly some certificate handling features work with OpenLDAP but not with Solaris LDAP). I suspect that everything potentially loaded into the same process needs to use the same LDAP libraries to avoid having to hide LDAP symbols within specific shared libraries, so all components would need to switch at the same time. On some Unix platforms, even system auth usage of LDAP can cause issues for processes that use a different LDAP client. Example: Apache User/Group processing could load whatever LDAP client is used by the system, but Apache mod_ldap could load OpenLDAP. (Maybe system auth LDAP is hidden behind a door call on OpenSolaris?)
