Name types for SPN of form HTTP/webserver.example.com
Arpit Srivastava
arpit.orb at gmail.com
Mon Dec 2 01:09:34 EST 2013
I am getting server name from my service provider as
webserver.example.com(which is hosted on AD) and and I have to make my
client application form a
pricipal name by itself. What I am doing is that just appending HTTP/
infront of it. Is it correct way OR there can be cases where we can't just
guess SPN like this ? I guess browser does this thing in similar manner. Is
there any authority document for guidance ?
On Mon, Dec 2, 2013 at 11:30 AM, Arpit Srivastava <arpit.orb at gmail.com>wrote:
> Thanks Roland
>
> What abt localhost appended at the end ?
>
> With this setting the SPN in packetdump is:
> HTTP/webserver.example.com/localhost
>
> Arpit
>
> On Fri, Nov 29, 2013 at 6:57 PM, Roland C. Dowdeswell <elric at imrryr.org>wrote:
>
>> On Fri, Nov 29, 2013 at 06:22:30PM +0530, Arpit Srivastava wrote:
>> >
>>
>> For GSS_C_NT_HOSTBASED_SERVICE, the format to use is service at hostname.
>> In your example, this would be HTTP at webserver.example.com.
>>
>> --
>> Roland Dowdeswell http://Imrryr.ORG/~elric/
>>
>
>
More information about the Kerberos
mailing list