On Wed, 6 May 2020 at 00:05, Tim Cross <theophil...@gmail.com> wrote: > Where Tom's solution fails is with smaller companies that cannot afford > this level of infrastructure.
Is there an objection to openldap? It's lightweight (so could reasonably be run on the same hardware without significant impact), BSD-ish and mature, and (with the password policy overlay) should provide exactly the functionality the OP requested. Geoff
