The first version of Exchange 2010 to support Kerberos is SP1 RU3. It does this through the RollAlternateServiceAccountCredential.ps1
commandlet.
Besides implementing "better" security, does this offer any other benefits for disaster recovery, performance, or anything else worth knowing?
FYI - in case Google sends you here:
The way to determine if Kerberos is being used, use KList.exe
in conjunction with
Test-OutlookConnectivity -Identity administrator -MailboxCredential $c -Protocol tcp