spgsitsupport Posted August 24, 2015 Report post Posted August 24, 2015 I have SQL specified as FQDN in SCCM 2012 R2 config Ofcourse such account does NOT exist in AD (as it is only short name) So I get lots of error in event log: A Kerberos error message was received: on logon session Client Time: Server Time: 14:35:53.0000 8/24/2015 Z Error Code: 0x7 KDC_ERR_S_PRINCIPAL_UNKNOWN Extended Error: 0xc0000035 KLIN(0) Client Realm: Client Name: Server Realm: DOMAIN.LOCAL Server Name: MSSQLSvc/sccmserver.local:1433 Target Name: MSSQLSvc/sccmserver.local:1433@DOMAIN.LOCAL Error Text: File: 9 Line: 12c5 Error Data is in record data. setspn -L SQLServerAccountName returns correct info (SPNs do exist & they are correct for this SQL account) Is that expected? Can it be fixed? Seb Quote Share this post Link to post Share on other sites More sharing options...
spgsitsupport Posted August 24, 2015 Report post Posted August 24, 2015 Resolved it by running SQL used by SCCM as domain user & assigned SPNs MSSQLSvc/sqlserver:1433 & MSSQLSvc/sqlserver_FQDN:1433 to this user https://technet.microsoft.com/en-us/library/Bb735885.aspx?f=255&MSPPError=-2147217396 https://msdn.microsoft.com/en-us/library/ms143504.aspx Quote Share this post Link to post Share on other sites More sharing options...
