2- I also use "--disableldap --disableldapauth --enablepamaccess"
flags and it appears that authconfig has updated properly all
files in /etc/pam.d/* except for /etc/pam.d/sudo :
# grep ldap /etc/pam.d/sudo
auth sufficient pam_ldap.so use_first_pass
account [default=bad success=ok user_unknown=ignore] pam_ldap.so
password sufficient pam_ldap.so use_authtok
session optional pam_ldap.so
Nothing critical in all that (to me at least), since I found workarounds,
however may be this should be fixed with next authconfig versions ?