Need help removing duplicate SPN



I am getting Event ID 11 errors indicating a duplicate SPN for MSSQL Service.
I used the TechNete script queryspn and it appears that instead of having two
computers with the same SPN I have one user and one computer with the same
registered SPN. The entries I see are:

CN=SQLSA,OU=Virtual,OU=Admins,OU=Accounts,OU=Bellevue,DC=MYDOMAIN,DC=LOCAL
Class: user
User Logon: SQLSA
-- MSSQLSvc/MYSERVER.MYDOMAIN.LOCAL:1433

CN=MYSERVER,OU=Non-Domain
Controllers,OU=Servers,OU=Computers,OU=Bellevue,DC=MYDOMAIN,DC=LOCAL
Class: computer
Computer DNS: MYSERVER.MYDOMAIN.LOCAL
-- MSSQLSvc/MYSERVER.MYDOMAIN.LOCAL:1433
-- HOST/MYSERVER
-- HOST/MYSERVER.MYDOMAIN.LOCAL

I have other SQL Servers that look identical to the computer entry that
don't have their MSSQL SPN duplicated in the User SQLSA so I'm guessing I
should delete the entry from the user using ADSIEDIT to clear the error. Is
that correct? I don't see two computers with that SPN.


While I'm here I have another question. We just upgraded a server from SQL
2005 STD to SQL 2008 ENT. Its MSSQL SPN entries are:

CN=MYSERVER2,OU=Non-Domain
Controllers,OU=Servers,OU=Computers,OU=Bellevue,DC=MYDOMAIN,DC=LOCAL
Class: computer
Computer DNS: MYSERVER2.MYDOMAIN.LOCAL
-- MSSQLSvc/MYSERVER2.MYDOMAIN.LOCAL
-- MSSQLSvc/MYSERVER2.MYDOMAIN.LOCAL:1433
-- HOST/MYSERVER2
-- HOST/MYSERVER2.MYDOMAIN.LOCAL

Is this server not creating a duplicate SPN error because one is appended
with :1443? I have other SQL servers and their entries all are appended with
:1443. They are all SQL 2005 boxes. Should I delete the appended SPN from AD
or should I leave it alone?



--
Tim
.