Hello,
Thank you for posting in Q&A forum.
Regarding the downside of NTLM, I would raise the security Concern that NTLM is morely likely to incurr malicious attacks as it's with lower security level.
Kerberos will be a more chosed authentication method and NTLM is more recommended as a fallback plan.
For NTLM related details please refer to Microsoft Official Documentation: https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-10/security/threat-protection/security-policy-settings/network-security-restrict-ntlm-ntlm-authentication-in-this-domain
Hope this answer can help you well.
Best regards,
Jill Zhou