Yes you can use the local sudoers file by adding a ldap user or
group,
but it will only work on the the machine you add the user or group to, I
initially did this with my AD domain joined laptop.
There is a very big problem with doing it this way if you want to do it
for multiple machines and users, you have to alter each and every
sudoers file. This is where sssd-sudoers comes in, you setup the sudo
rules in ldap or AD (once) and get the same results everywhere.
I'm okay with having local rules; I just want the local rules to apply to LDAP
users/groups. Is that what you had? Did you have them defined with NOPASSWD, or did they
require a password?
Thanks,
Jacob