ERROR:
======
The Kerberos client received a KRB_AP_ERR_MODIFIED error from the server it-segbg-bcdev. The target name used was HTTP/server1.AP.net. This indicates that the target server failed to decrypt the ticket provided by the client. This can occur when the target server principal name (SPN) is registered on an account other than the account the target service is using. Please ensure that the target SPN is registered on, and only registered on, the account used by the server.
To register an SPN for a Report Server service running as a domain user
1.Install Reporting Services and configure the Report Server service to run as a domain user account.
Note that users will not be able to connect to the report server until you complete the following steps.
2.Download and install Windows Server 2003 Service Pack 1 Support Tools from the Download Center.
3.Log on to the domain controller as domain administrator.
4.Open a Command Prompt window.
5.Copy the following command, replacing placeholder values with actual values that are valid for your network:
Setspn -a http/:computername.domainname:port domainuseraccount
6.Run the command.
7.Open the RsReportServer.config file and locate the AuthenticationTypessection. Add RSwindowsNegotiate as the first entry in this section to enable NTLM.
http://msdn.microsoft.com/en-us/library/cc281382.aspx
======
The Kerberos client received a KRB_AP_ERR_MODIFIED error from the server it-segbg-bcdev. The target name used was HTTP/server1.AP.net. This indicates that the target server failed to decrypt the ticket provided by the client. This can occur when the target server principal name (SPN) is registered on an account other than the account the target service is using. Please ensure that the target SPN is registered on, and only registered on, the account used by the server.
To register an SPN for a Report Server service running as a domain user
1.Install Reporting Services and configure the Report Server service to run as a domain user account.
Note that users will not be able to connect to the report server until you complete the following steps.
2.Download and install Windows Server 2003 Service Pack 1 Support Tools from the Download Center.
3.Log on to the domain controller as domain administrator.
4.Open a Command Prompt window.
5.Copy the following command, replacing placeholder values with actual values that are valid for your network:
Setspn -a http/
6.Run the command.
7.Open the RsReportServer.config file and locate the AuthenticationTypes
http://msdn.microsoft.com/en-us/library/cc281382.aspx
No comments:
Post a Comment