An NMAS method for Kerberos was developed back when the OES client was Novell client32 version 4.83. Support for this: an NMAS login by referral to an external Kerberos system was not continued and today it is not possible with the current client.
Please restore this functionality so that environments with a centralised enterprise kerberos system can make use of this to offer a single sign-on capability.
Those who run eDirectory within a federated organisation providing kerberos as a centralised service would like to consume kerberos credentials to login to eDirectory. Other methods of password synchronisation (Identity Manager for example) may not be possible for political reasons.