Please refer to the discussion here to get some context:
As far as I know, login modules get a map of options. They are free to pick and choose the ones they want; not choke on the ones they do not like.
I have requested Marcus to pursue filing of a bug for the IBM JDK.
As far as I know, no such issues have been reported against the Kerberos module in the Sun JDK.