In the meantime I found those threads and I am glad I didn't have to answer myself (thank you Jamie 😉. The fact that you got OpenACS to authenticate against Windows Active Directory is exciting. Heterogeneous sources of authentication are commonplace in large organizations, and the fact that fall back authentication can be done is important. At our university there are plans to implement a university wide directory (in fact this morning I heard that Windows Active Directory is being seriously considered) so your post could not have had better timing.
Although it is not something that we would be able to test right now could you elaborate a little (I am sure there are others that would be interested in knowing how and when you did this)? Do you think your (carefully honed) modifications could eventually be used in a production environment with thousands of users?