Im working on a way to have Wildfire use GSSAPI authentication (read: Kerberos 5). Since Windows AD basicly uses the same API as Kerberos, it should be fairly simple to get working in a windows envionment once Kerberos support is there. However, since Spark is not Open Source, I wont be able to put the modifications into Spark out there. I will be putting together some sample Java apps that demonstrate how to do this correctly, so when I get that done hopfully the Jivesoft guys can integrate it (They are always quick, Im sure it wont be a problem)
For those worried about security, GSSAPI/Kerberos logins are secure. Far more secure than the current methods used, as no form of the user’'s password ever crosses the network. I can provide references if anyone wants more detail as to why.