Hello,
In regards of the kerberos issue looks like the ASA and the AD server don't have the same time. Please make sure that the time is configure correctly.
For the LDAP issue please send me a debug ldap 255 output.
A 3rd option will be to enable IAS or NPS on your windows server and use radius.
Regards,