We are using in learn@wu kerberos since more than 10 years in the large (via PAM) with a modified pam-tester module, that does the actual password checking. Our "persons" table has about 120k entries, about 30k are active. So, knspnego is not the only way to use kerberos in OpenACS,
