How to create a Service Principle Name (SPN)

J.D. Meier, Jason Taylor, Prashant Bansode, Carlos Farre, Madhu Sundararajan, Steve Gregersen.

To create an SPN for a domain account, run the Setspn tool from a command prompt as below
setspn -A HTTP/webservername domain\customAccountName 

setspn -A HTTP/webservername.fullyqualifieddomainname domain\customAccountName 

The setspn tool creates an SPN for the custom domain account (domain\customAccountName) and associates the account with the HTTP service on the specified Web server. By running the command twice as shown above you can associate the account with the NetBIOS server name and the fully qualified domain name of the server. This ensures that the SPN is established correctly even if your environment does not consistently use fully qualified domain names.

Additional Resources

Last edited May 8, 2008 at 3:27 AM by prashantbansode, version 1

Comments

No comments yet.