I don't know why that wouldn't work, it behaves as expected with the ldap backend. Just to be clear, the error you are you are getting is this one? "sorry, you must have a tty to run sudo" - todd