Hi, I am attempting to setup password expiration when using PAM on SUSE where the Sun Java Directory Server is storing account information. How do I configure this? I have used YAST to configure LDAP. The ldap.conf is configured correctly. Users can login that have their accounts in the Sun Directory Server. However, I don't understand how password expiration works. The Sun Java Directory Server has its own password policy mechanism that does password expiration. Will this work with the PAM that is included on SUSE? I have also looked into storing ShadowAccount information in the directory. Is this the way to go? If so, how do I configure PAM or nsswitch.conf to read this information? Thank you for any help.