make your self an /etc/ldap.secret file and be sure to set perms that will protect it..your ldap.conf file "could" contain it but that file needs to be world readable.chuck