We primarily run with RHEL 5/6/7 Servers, but, for SAP we will be testing on SLES. We use Kerberos for authentication purposes ie. Add user locally but passwords are checked against AD. I installed the SLES 12 Server with defaults and did the following after :
zypper install krb5-client pam_krb5
Copied the /etc/krb5.conf file from one of the RHEL Servers across to the SLES 12 Server
pam-config --add --krb5 --add --mkhomedir
Now I can login with the local Admin User Accounts I added with password checks being done against AD ... however, even though root has a local password, it is being authenticated against AD and then obviously fails.