Looking at Apple documentation I see the support for something I had never heard of: Kerberos Key Distribution Center Proxy. Looks like a solution to encapsulate Kerberos requests into an HTTPS. Any experience on this here?