Section 2 begins by telling you to emerge things on the server. Nothing in the guide mentions clients until before code listing 4.3. This would indicate that the only step needed on each client is the changes to nsswitch.conf, but this is wrong. Clients need to have openldap, pam_ldap, and nss_ldap emerged, ldap.conf setup, and the PAM changes before the changes to nsswitch.conf will work. Basicly all of section 4. Reproducible: Always Steps to Reproduce: 1. Follow LDAP howto 2. Try to login on a client 3. Fail Actual Results: Loging in on clients didn't work, because they weren't configured to connect to the server Expected Results: Logged in successfuly A solution to this problem would be to change "4. Authentication Configuration" to "4. Client Authentication Configuration" and instruct the user to do those steps on the clients. If section 4 is changed into the client config, the "OpenLDAP permissions" subsection should be split into a seperate section since it has nothing to do with the client configs, perhaps into section 5.
Thanks for the proposed fix. It's implemented now.