alt Hacker Newsif you dont mind asking, what dont you like about kerberos? I personally like it quite with certs / hardware token
to be honest, most things you list can be setup with some research. The only one I am not sure about is integrated storage, but then I am also not entirely sure what that even is supposed to mean exactly
The user experience between a phone, tablet and computer should be symbiotic. Krb is not a first class thing in the mobile world. So users now hav great Krb experience with Outlook.exe but are typing passwords into Safari at owa.example.com (anywhere you type an AD password that isn't lsass or ADFS is really not good posture)
So, passwords are bad and the password is a key component of krb. Moving away from passwords is a step in the right direction eg OIDC.