After I create the account and try to ssh in, I get: send_ldap_response: msgid=3 tag=97 err=49. I think err=49 means invalid credentials. But in a few hours, this account will work.
You should be using "ldapwhomai" to bind as the user and verify whether or not that works. If it does, then you have something like nscd caching the account list, even if you think you've disabled it.
--Quanah -- Quanah Gibson-Mount Sr. Member of Technical Staff Zimbra, Inc A Division of VMware, Inc. -------------------- Zimbra :: the leader in open source messaging and collaboration