Re: Continued KDC error event id 11 Service Principal name, etc..
From: Chriss3 [MVP] (noSpamHere_at_chrisse.se)
Date: 08/18/04
- Next message: Eric Barnes: "Re: Active Directory Connector"
- Previous message: Patrick Van Osdel: "Domain Admins in NT 4 Domain"
- In reply to: Eric Wishan: "Continued KDC error event id 11 Service Principal name, etc.."
- Next in thread: Eric Wishan: "Re: Continued KDC error event id 11 Service Principal name, etc.."
- Reply: Eric Wishan: "Re: Continued KDC error event id 11 Service Principal name, etc.."
- Messages sorted by: [ date ] [ thread ]
Date: Wed, 18 Aug 2004 19:19:15 +0200
Hello Eric, You have found the two objects that both have the same
ServicePrincipal Name, Remove the Service Principal Name that conflicts from
one of the objects. This is a multi-valued attribute, each object can have
several Service Principal Names. You can modify this with ADSIEdit and
LDP.exe, I think ADSIEdit is the easiest way do to so.
-- Regards Christoffer Andersson Microsoft MVP - Directory Services No email replies please - reply in the newsgroup ------------------------------------------------ http://www.chrisse.se - Active Directory Tips "Eric Wishan" <eric@wishan.com> skrev i meddelandet news:840701c48543$cc4f7940$a501280a@phx.gbl... > I have a continued KDC error from my event logs. > "There are multiple accounts with name > cifs/moses.wishan.com of type DS_SERVICE_PRINCIPAL_NAME. > > and > > There are multiple accounts with name > cifs/moses.wishan.com of type DS_SERVICE_PRINCIPAL_NAME. > > I have used both articel from microsoft on filtering AD > and generating lists to highlight the duplicate SPN's. > Honestly, after filtering and reviewing these outputs, I > am not actually sure what to look for in finding an > duplicate, and then EXACTLY where to delete the duplicate > SPN. The following is an excerpt from the ldap filtering > utility: > > ***Searching... > ldap_search_s(ld, "DC=wishan,DC=com", > 2, "serviceprincipalname=host/moses.wishan.com", > attrList, 0, &msg) > Result <0>: (null) > Matched DNs: > Getting 2 entries: > >> Dn: CN=Administrator,CN=Users,DC=wishan,DC=com > 4> objectClass: top; person; organizationalPerson; > user; > 1> cn: Administrator; > 1> description: Built-in account for administering > the computer/domain; > 1> distinguishedName: > CN=Administrator,CN=Users,DC=wishan,DC=com; > 1> name: Administrator; > 1> canonicalName: wishan.com/Users/Administrator; > >> Dn: CN=MOSES,OU=Domain Controllers,DC=wishan,DC=com > 5> objectClass: top; person; organizationalPerson; > user; computer; > 1> cn: MOSES; > 1> distinguishedName: CN=MOSES,OU=Domain > Controllers,DC=wishan,DC=com; > 1> name: MOSES; > 1> canonicalName: wishan.com/Domain > Controllers/MOSES; > > Any SPECIFIC help would be greatly appreciated! Thanks in > advance. > >
- Next message: Eric Barnes: "Re: Active Directory Connector"
- Previous message: Patrick Van Osdel: "Domain Admins in NT 4 Domain"
- In reply to: Eric Wishan: "Continued KDC error event id 11 Service Principal name, etc.."
- Next in thread: Eric Wishan: "Re: Continued KDC error event id 11 Service Principal name, etc.."
- Reply: Eric Wishan: "Re: Continued KDC error event id 11 Service Principal name, etc.."
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
