and the Unix admin and support accounts aren't root either.

As far as GUI account, yes,  using LDAP to authenticate could be useful.

there are 3default account on the appliances admin, support and root.
admin is your default account which can be used. the suppor as well as root must be enabled and can be used in support cases by the symantec supporter.
this accounts are as far as I understand local appliance accounts which are coverd using RHEL methods (shadows, passwd, users, groups)

the other kind of users are the accounts you use manage the appliance which could be added using the web console.
this accounts are stored in the database.
from the point of a directory sync or a connection to a directory server i think one good possibility is the use of directory accounts.

Thanks for your comments, this request has been captured. 

//ian

A quick update on your suggestion - we are planning to add support for LDAP authenticated adminstration accounts in Symantec Messaging Gateway 10.5.

The development timelines is very important to us to update our higher management. This has impact for license renewal & ease your account manager & technical consultant when answer such question by our top management.