I'm wanting to do the following:

When an account logs into a OES2/SLES server locally either via ssh or the
console I'd like them to authenticate against eDir. On top of this, I want
to assign sudo rights to an edir account to restart the box via an edir
group membership. Is this possible and how would I go about setting it up.

I have a 20 or so linux servers (sles and red-hat) that I'd like to do this
for, rather than set individual sudo configs on each box.