auth required /lib/security/pam_nologin.so auth sufficient /lib/security/pam_ldap.so auth required /lib/security/pam_unix_auth.so try_first_pass account sufficient /lib/secuirty/pam_ldap.so ^^ These wovels are reversed account required /lib/security/pam_unix_acct.so password required /lib/security/pam_cracklib.so password sufficient /lib/security/pam_ldap.so password required /lib/security/pam_pwdb.so use_first_pass session required /lib/security/pam_unix_session.so Because of this typos in the path of pam_ldap.so, the authentication fails.
Good catch. This is fixed in the Raw Hide version of nss_ldap, which now includes the contents of the now-defunct pam_ldap package.