I have no personal experience with Kerberos, but the process of configuring Oracle Net for Kerberos Authentication is explained in the "Oracle Advanced Security Administrator's Guide", and the way I understand it is that it is transparent to Oracle Net applications (such as your DOA application). The user connects without specifying a username/password, and instead Oracle Net uses the Kerberos ticket on the client machine.