Finally, I got everything working. I’ll have to write up a special page to outline everything that I just did. But, my MAIN problem was that I didn’t edit the /etc/pam.d/* files. I had to tell a bunch of different processes to specifically allow ldap logins. Files in /etc/pam.d that I edited:
gdm <--do init 3, init 5 to have these changes take effect
login
sshd
xdm
I'm sure that I'll have to edit more, but these got me ssh logins and console logins.
Problems still to fix.
Console logins require the password twice. It shouldn't do that. I also want to double-check that everything is encrypted. From the logs it looks like it is, but I want to use ethereal to watch packets to make sure. Also, don't have the ability to change the password.