Issue: When an Active Directory user logs in to the SUSE Linux PAM Client and passes all the authentication methods in the chain, authentication fails and an error message Sorry that didn't work is displayed.
Workaround:
After joining the SLES 12 Service Pack 3 to the windows domain, navigate to Yast and search for the Windows Domain Membership.
Select the following in the Windows Domain Membership window:
Use SMB Information for Linux Authentication
Create Home Directory on Login
Offline Authentication
Click NTP configuration in the lower part of the window.
Select Now and on Boot in the Advanced NTP Configuration > General Settings tab.
Click Add.
Select the Type as Server from the New Synchronization window and click Next.
Specify the host or IP address of the NTP server in Address.
Click Test to test the server settings.
Click OK to apply the Windows Domain Membership settings.
A list of packages are displayed.
Ensure to install all the packages that are prompted in the list.
Reboot your system.