We use OpenLDAP, but nothing depends on it.

We use LDAP as a members information directory to be looked up by hand, no services consult it.

For serving user metadata, we use libnss-afs which pulls that information from AFS PTS database. However, the PTS is not really intended for this, so it doesn't provide space for user's supplementary Unix groups, GECOS fields etc.

So we keep this information (real names, primarily) in LDAP, and the "finger" command has been hacked slightly to obtain all info from AFS PTS, then query LDAP for real name, and then display results in an integrated "finger" output.

So, LDAP is underused in our setup.