On Mar 3, 2009, at 08:47, zhaoyang mao wrote: > Can i use one machine as the kdc server and the openldap server? Certainly, that should work fine. Some people would suggest, though, that you run different services on different machines so that an accidental compromise of one doesn't impact the other (or at least not as much). Ken