After a cursory investigation I have come to belief that unfortunately not much has changed in the last 4 years regarding Linux and something like an Enterprise Directory.
What do I mean by an Enterprise Directory?
- A product like Microsoft Active Directory (http://en.wikipedia.org/wiki/Active_directory) and Novell eDirectory (http://en.wikipedia.org/wiki/Novell_eDirectory) built from FLOSS
- Just as far as Kerberos is concerned here is a preview...
- Currently neither Heimdal or MIT Kerberos can be found in the stable Dapper repositories (only in Universe).
- A sane default configuration has to the developed and packaged for easy installation.
- Bootstrap processes need to be developed to get the system up and running.
- Clients have to recompiled/patches/fixed to support SSO via Kerberos
- The client OS has to be "kerberized" (pam support for kerberos logon, changing of passwords, password policies...)
No wonder the state has not changed much in the last 4 years...