Stack Overflow
Stack Overflow

Questions tagged [spn]

A Service Principal Name (SPN) distinguishes a Kerberos-protected service running on an IP host (such as HTTP/foo.bar.com) as a unique entity on a Kerberos-protected network.

A service principal name (SPN) distinguishes a Kerberos-protected service running on an IP host (such as HTTP/foo.bar.com) as a unique entity on a Kerberos-protected network. In the Directory Server, an SPN is used by Kerberos authentication to associate the IP host service instance to a Directory account object. This allows a client application to request that the Kerberized service authenticate an account even if the client does not know the actual account name.

Reference: Service Principal Names (Windows) - MSDN - Microsoft https://msdn.microsoft.com/en-us/library/ms677949(v=vs.85).aspx

84 questions
0
votes
0 answers

Connect to ADLS gen 1 with Azure Databricks using SPN + certificate

I want to connect to a datalake store in databricks using a service principal with certificate(pfx or pem). On the databricks page there is only reference to using access…
Dipesh
  • 75
  • 6
0
votes
0 answers

How to get file from Azure services(Azure blob storage) using Azure Service Principal Name(SPN) using C#.net?

In General, I want to get files from the Azure blob storage account using C#.net, and I have an SPN name. I have tried the following ways to do it. Note: Here Authentication key stored in KEY Vault and Azure admin provide us only SPN Name Way…
Deepak Patel
  • 464
  • 1
  • 3
  • 17
0
votes
0 answers

asp.net core 3 HTTP.SYS with SSL, Active Directory + Kerberos - struggling with SPN?

I'm trying to run a net core 3 API as a windows service (i.e. not using IIS) with Http.Sys authenticating accounts on an active directory. I would like to have Basic auth enabled (have to support non .NET languages where developers have requested…
Paul
  • 243
  • 1
  • 2
  • 10
0
votes
1 answer

SQL Server Browser won't start

I want to start playing around with databases in Java to help with my university work however I can't get SQL Server to work properly. I've installed it using the wizard and selecting 'Basic' the installing SSMS. However when launching SSMS I get…
QuickJAB
  • 39
  • 1
  • 1
  • 6
0
votes
1 answer

Recompile neccessary if another krbsrvname is needed?

According to https://www.postgresql.org/docs/current/gssapi-auth.html: When GSSAPI uses Kerberos, it uses a standard principal in the format servicename/hostname@realm and care needs to be taken to specify the correct principal details when …
fjf2002
  • 872
  • 5
  • 15
0
votes
1 answer

CICD Authentication using SPN

I am creating a CI CD pipeline to move code between dev and test instances of databricks. I am able to achieve this using my personal token. Now, I am trying to do the same thing using a SPN and when I do the same, i get the following error. HTTP…
Sujatha
  • 21
  • 1
  • 7
0
votes
1 answer

Kerberos create spn and keytabs to include proxy DNS

I want to create SPNs and keytabs to include the proxy DNS so that the proxy can forward the headers to the back-end. I'm unsure what is host, domain and realm. Can someone verify if it looks ok? Or did I add an example.com too much? The proxy has…
Plv90
  • 7
  • 2
0
votes
1 answer

SetSPN for Always-On enabled server

We have a three node cluster setup for AON. We are receving the below error in the log. The SQL Server Network Interface library could not register the Service Principal Name (SPN) [ MSSQLSvc/servername.domain:port ] for the SQL Server service.…
SQLDoctor
  • 343
  • 7
  • 16
0
votes
1 answer

Cannot generate SSPI context error, but not if SPN server Name is specified

I'm facing this error when connecting to a remote SQL Server via VPN. The issue here is that I'm do able to connect only if the SPN Name is specified on the string connection, ie: "Server SPN = MSSQLSvc\MyServer.foo.bar" I've reviewed the infamous…
Roberto
  • 55
  • 2
  • 9
0
votes
1 answer

How to set SPN in Azure Active Directory

We are trying to set up SPNs for SQL SSRS in an environment that only has Azure AD. If I ran the SETSPN -S MSCRMSandboxService/TESTCRM domain\crmtestserv SETSPN -S MSCRMSandboxService/TESTCRM.symposium.org domain\crmtestserv I always get the…
Faruman
  • 13
  • 2
0
votes
1 answer

Kerberos and DNS relation

The Kerberos principals are usually defined as role/host@REALM. How is the host field used over here? Does it enforces that only that particular host can get a Kerberos ticket whenever kinit is run? If yes, then it makes sense for proper DNS to be…
LearningToCode
  • 631
  • 1
  • 12
  • 23
0
votes
2 answers

Deploying SSIS -- Cannot Generate SSPI Context

I am attempting to deploy an SSIS package to a server. I can build connection managers to the target server and databases on that server. However, attempting to deploy the error appears:
Sauron
  • 6,399
  • 14
  • 71
  • 136
0
votes
1 answer

Install - SharePoint server - SQL and SPN

I have a question about installing SQL server and a SP2016 development farm. I can install both but my boss asked me questions about installing SPN (Service Principal Name) in the AD. But I don't know why and how an SPN is linked with SQL and…
Kévin Nguyen
  • 13
  • 5
0
votes
1 answer

New-ADUser, Error during Setting Service Principal Names

I am trying to script new user creation process on windows servers and one part of this script is to set SPN records for that particular user. But I keep getting error "New-ADUser: The name reference is invalid" when I try to put the SPN parameter…
r4hul
  • 1
  • 2
0
votes
1 answer

Authenticating using SSPI, KERBEROS, SPN, & 127.0.0.1

I have my client/server application working & authenticating the client via KERBEROS on a Windows system using SSPI. I had to register an SPN to make this work and everything works if I use a the FQDN, but, it takes about 4 seconds. The connection…
karezza
  • 586
  • 5
  • 13
1 2 3 4
5
6