We are looking to enable SSO within our Salesforce.com org.  We understand there are 2 ways to utilize SSO.

• SAML via the Browser
• Delegated Authentication [APIs] - via custom development or we could utilize Ping Federate Connector [company currenty supports this]

Our requirements state that the User ID for all entry points into Salesforce.com [Browser, Mobile, Outlook, and Offline] utilize the numerical SSO ID we use internally within the company.  We understand the defualt configuration utilizes email addresses [standard user name of Salesforce.com] even with SSO enablement.

We would like there to be SAML based authentication for all entry points into Salesforce.com [Browser, Mobile, Outlook, and Offline].  Is this on the roadmap?  If not, any concerns as to why it is not?

Thanks.