In theory, it should already be the case, as Ipsilon is supposed to support Kerberos auth. So it would be redirecting from Bodhi → Ipsilon → Kerberos auth → Bodhi and it should be transparent.
That’s dependant on support in IPA and Ipsilon. Support in IPA is either coming or already there, support in Ipsilon is probably never going to happen, but it’s likely to land in Keycloak at some point. This would be one of the reasons to switch to it.