Re: How can I list all service principals in a Windows 2003 Active Directory?
- From: "Joe Richards [MVP]" <humorexpress@xxxxxxxxxxx>
- Date: Mon, 28 Aug 2006 21:08:01 -0400
Well HTTP/ is one of the "special" mapped SPNs that get remapped to HOST/. You can see the whole list of SPNs mapped this way by looking at the NTDS Service object. As shown
F:\Dev\CPP\AdMod>adfind -config -f objectcategory=nTDSService spnmappings
AdFind V01.31.00cpp Joe Richards (joe@xxxxxxxxxxx) March 2006
Using server: 2k3dc11.joe.com:389
Directory: Windows Server 2003
Base DN: CN=Configuration,DC=joe,DC=com
dn:CN=Directory Service,CN=Windows NT,CN=Services,CN=Configuration,DC=joe,DC=com
>sPNMappings: host=alerter,appmgmt,cisvc,clipsrv,browser,dhcp,dnscache,replicator,eventlog,eventsystem,policyagent,oakley,dmserver,dns,mcsvc,fax,msiserver,ias,messenger,netlogon,ne
tman,netdde,netddedsm,nmagent,plugplay,protectedstorage,rasman,rpclocator,rpc,rpcss,remoteaccess,rsvp,samss,scardsvr,scesrv,seclogon,scm,dcom,cifs,spooler,snmp,schedule,tapisrv,trk
svr,trkwks,ups,time,wins,www,http,w3svc,iisadmin,msdtc
1 Objects returned
As for finding SPNs, you can use my adfind which is a command line AD query tool or LDP which is GUI or any number of LDAP based tools or as you found, setspn.
If you wanted to look at all machines in your forest which have K1 as part of the SPN you could do something like
adfind -gc -b -f serviceprincipalname=*k1* serviceprincipalname
or more efficiently... assume that there is a host/k1 and do something like
adfind -gc -b -f serviceprincipalname=host/k1 serviceprincipalname
joe
--
Joe Richards Microsoft MVP Windows Server Directory Services
Author of O'Reilly Active Directory Third Edition
www.joeware.net
---O'Reilly Active Directory Third Edition now available---
http://www.joeware.net/win/ad3e.htm
w-ij-n wrote:
Hi All.
I have an IIS server (k1) that's installed in a Windows 2003 AD. When I
browse to a page on the server that's protected with Integrated Windows
Authentication, the kerbtray.exe tool shows a new ticket for HTTP/k1 in
the local Kerberos ticket cache. This means that a service principal
called HTTP/k1 should be registered somewhere in the AD. Is there a way
I can list all these service principals?
I try the setspn.exe tool from the Resource Kit but it only shows:
C:\Program Files\Resource Kit>setspn -L k1
Registered ServicePrincipalNames for CN=K1,CN=Computers,DC=n3,DC=local:
NtFrs-88f5d2bd-b646-11d2-a6d3-00c04fc9b232/k1.n3.local
HOST/K1
HOST/k1.n3.local
Thanks in advance
Weijun
- Follow-Ups:
- References:
- Prev by Date: Re: LDAP query help request.
- Next by Date: Extending Active Directory schema using DirectoryEntry
- Previous by thread: Re: How can I list all service principals in a Windows 2003 Active Directory?
- Next by thread: Re: How can I list all service principals in a Windows 2003 Active Directory?
- Index(es):
Relevant Pages
|
