Thank very much for your suggestion, i can only reply few of the questions, i need to go to office and check it agian, then tell you all the answers.
So far, our China users can't login to that server, we used ldap to authenticate, in /var/log/secure,and /var/log/message, we have confirmed the password authenticated successfully, and that server has opened a session for us.
The ldap is working right, cause other country's colleagues can work fine, and if we login to US server first then ssh to that server, still working, so ldap is working as designed, i guess. The permssions should be ok, cause all our site's users have the same issue. Will check again after i am in office. thx
Last edited by zousheng; 02-10-2013 at 06:01 AM.