If everything else works fine, and only ssh fails check sshd_config for this parameter: PAMAuthenticationViaKBDInt yes
pam.conf: Try moving statements with ldap.so.1 to the end of each section and add debug switch: login auth requisite pam_authtok_get.so.1 login auth required pam_dhkeys.so.1 login auth required pam_unix_cred.so.1 login auth sufficient pam_unix_auth.so.1 login auth required pam_dial_auth.so.1 login auth sufficient pam_ldap.so.1 try_first_pass debug
If it's not only ssh-login: - is output of 'getent passwd' ok? - provide output of 'ldaplist' - provide output of 'ldapclient list' - check setup of nscd (svc:/system/name-service-cache:default)
Jürgen Sprenger
openldap-technical@openldap.org