RE: LDAP with fallback on local authentication?