ldap认证问题

[root@zzz ~]# ldapsearch -LLL -w 111 -H ldap://demo.com -D "cn=admin,dc=demo,dc=com" -b "dc=demo,dc=com"
dn: dc=demo,dc=com
objectClass: top
objectClass: dcObject
objectClass: organization
dc: demo
o: demo, Inc.

dn: ou=People,dc=demo,dc=com
ou: People
objectClass: top
objectClass: organizationalUnit

dn: ou=Group,dc=demo,dc=com
ou: Group
objectClass: top
objectClass: organizationalUnit

dn: cn=testuser1,ou=Group,dc=demo,dc=com
objectClass: posixGroup
objectClass: top
cn: testuser1
userPassword:: e2NyeXB0fXg=
gidNumber: 1002

dn: cn=testuser2,ou=Group,dc=demo,dc=com
objectClass: posixGroup
objectClass: top
cn: testuser2
userPassword:: e1NTSEF9elZPV2F1akllSXpUdTk5UkJtZVg2cGRIZjFSaTlIeVI=
gidNumber: 1003

dn: uid=testuser1,ou=People,dc=demo,dc=com
uid: testuser1
cn: testuser1
objectClass: account
objectClass: posixAccount
objectClass: top
loginShell: /bin/sh
uidNumber: 1002
gidNumber: 1002
homeDirectory: /home/testuser1
userPassword:: e1NTSEF9NEVVYStVVFVpdFFqWWxOejNzbHNlQnFodnFwYi80ZnQ=

dn: uid=testuser2,ou=People,dc=demo,dc=com
uid: testuser2
cn: testuser2
objectClass: account
objectClass: posixAccount
objectClass: top
loginShell: /bin/sh
uidNumber: 1003
gidNumber: 1003
homeDirectory: /home/testuser2
userPassword:: e1NTSEF9ZzRwb09ON1M3RlhubGdSUXpuNTl5WjF5NEIwWlpLWlg=

dn: ou=machines,dc=demo,dc=com
objectClass: organizationalUnit
ou: machines

dn: uid=aaa,ou=People,dc=demo,dc=com
objectClass: posixAccount
objectClass: inetOrgPerson
objectClass: organizationalPerson
objectClass: person
homeDirectory: /home/aaa
loginShell: /bin/bash
uid: aaa
cn: aaa
userPassword:: e1NTSEF9WmJSTE1uWDVYb0NwNktiOVdUOWtRRlhUMG51ZVZQbVI=
uidNumber: 10000
sn: aaa
gidNumber: 10000

dn: cn=aaa,ou=Group,dc=demo,dc=com
objectClass: posixGroup
gidNumber: 10000
cn: aaa

这是我做好了ldap环境后，查询到的数据
现在是这样的，我设置了系统通过ldap认证
[attach]42386[/attach]

这个应该没什么问题对吧。



然后我通过命令看看这个用户，却发现这个账号没有
[root@zzz ~]# id aaa
id: aaa: No such user

我没有使用useradd aaa 创建，我是想让系统使用ldap认证，ldap有这个用户，那么为什么这里查不到。
更别谈使用aaa账号登陆系统了。

是我设置的问题还是什么？？希望大家帮我看看