I'm using kerberos for authentication and its working great. I'm also using PHP's $_SERVER['REMOTE_USER'] to display the user info.
the only problem is apache cant make up its mind on the REMOTE_USER in the access.log. about 2/3rds of the logs are simply user and about 1/3rd are the full user@DOMAIN like PHP reports. does anyone know the reasoning for this or a solution to get consistent usernames, preferably user@DOMAIN? (for analytics)