pam-ccreds and offline LDAP auth problem

[Sebastiaan Veldhuisen]

I'm trying to get cached credentials working with my OpenLDAP and
pam_ldap setup to get offline authentication working for ldap users.
I'm using the pam-ccreds module on Feisty with the how to:

https://help.ubuntu.com/community/PamCcredsHowto

If the ldap server is available, LDAP authentication works fine. If the
LDAP server is unavailable (network disconnected) LDAP accounts can't
login.
The nss-db is available and users and groups can be retrieved from it
(getent passwd/group etc.), but I get the following error upon login:

You have been logged on using cached credentials.
Authentication service cannot retrieve authentication info.

After that I get logged out again. My current config:

Current pam configuration:
auth    [success=done default=ignore]   pam_unix.so nullok_secure
try_first_pass
auth [authinfo_unavail=ignore success=1 default=2] pam_ldap.so
use_first_pass
auth [default=done]  pam_ccreds.so action=validate use_first_pass
auth [default=done]  pam_ccreds.so action=store
auth [default=bad]   pam_ccreds.so action=update
password sufficient pam_ldap.so
password required pam_unix.so nullok obscure min=4  max=8 md5
account sufficient pam_ldap.so
account required pam_unix.so
session required pam_unix.so
session required pam_mkhomedir.so skel=/etc/skel/
session optional  pam_ldap.so
session optional  pam_foreground.so

Current nsswitch.conf:
passwd:        files ldap [NOTFOUND=return] db
group:        files ldap [NOTFOUND=return] db
shadow:         files ldap [NOTFOUND=return] db
hosts:          files mdns4_minimal [NOTFOUND=return] dns mdns4
networks:       files
protocols:      db files
services:       db files
ethers:         db files
rpc:            db files
netgroup:       nis
automount:    files ldap

Any help or a confirmation of a working setup would be great

Sebastiaan