Dear Benjamin and Tarjei, I've changed the "/etc/openldap/ldap.conf" and the "/etc/openldap/slapd.conf" and solved the problem - that's the good part. The problem is that I don't know exactlly why it's working now and why it wasn't. Working file: BASE dc=mydomain, dc=com, dc=br URI ldap://127.0.0.1 directory /var/lib/ldap TLS_CACERT /etc/openldap/CA/server.pem # MUST match settings in slapd.conf suffix "dc=mydomain,dc=com,dc=br" rootdn "cn=Manager,dc=mydomain,dc=com,dc=br" rootpw "{SSHA}MyRootdnPassword" index cn, sn, uid, gidnumber pres, eq, approx index objectclass pres,eq dbcachesize 500000 index default none Not working file: base dc=mydomain, dc=com, dc=br uri ldap://127.0.0.1 ldap://192.168.200.102 #also tried "ldaps://192.168.200.102" #The host 192.168.200.102 accepts connections on ports 389 and 636 - I'm using ldapbrowser (a good java based utility) port 389 #also tried 636 ssl no #also tried: "ssl start_tls" and "ssl yes" directory /var/lib/ldap tls_cacert /etc/openldap/CA/server.pem #tls_cacert /etc/openldap/CA/server.pem (tried comment and uncommented) # MUST match settings in slapd.conf suffix "dc=mydomain,dc=com,dc=br" rootdn "cn=Manager,dc=mydomain,dc=com,dc=br" rootpw "{SSHA}MyRootdnPassword" scope sub My guest it was a database permitions/indexes problem but I can't explain why a "ldapsearch -x 'uid=edgar'" was working and a "getent passwd edgar" not. Thanks for anyone that tried to help, Best regards for all, José Carlos Stevenson.