Single Sign On and Kerberos

I am currently working on a Single Sign On project involving a Unisys ClearPath MCP mainframe. The main interface that ClearPath has for this is Kerberos. The basic idea is to use the application to set HTTP headers to set WWW-Authenticate header (as described in RFC 4559). The first step to make this work is to integrate Kerberos into an active directory environment. I still have more work to do to make this work, but as I will continue to update information here for others. Coincidentally, UNITE placed their call for presentations for the September 2013 conference in Chicago. I submitted using Kerberos in an SSO environment for my topic.