I have Macintosh 10.4.* clients BOUND to and authenticating via AD.

When the clients access a share on the windows 2003 server via SMB
and after the initial authentication process has successfully
completed are all the documents copied and opened from that share
encrypted by kerberos? or is SMB signing the only way to secure the
data accessed on the share.