4.1.7.2.3 RemoveADLDSSPNs

 procedure RemoveADLDSSPNs(szScriptBase: unicodestring): boolean

The RemoveADLDSSPNs procedure connects to an AD DS DC and attempts to delete any SPN values registered for the AD LDS DC on the object (in the external AD DS domain) that corresponds to the security principal that the AD LDS service is running as. Sections 2.2.3.2 and 2.2.4.2 specify the SPN values removed by this procedure. If no such SPN values exist or the deletion is successful, RemoveADLDSSPNs returns TRUE; otherwise, it returns FALSE, indicating that a batch file was created in the folder specified by the szScriptBase parameter. This batch file contains commands that an administrator can run to clean up the SPNs.

Note When the procedure fails to create a batch file for any reason, RemoveADLDSSPNs returns TRUE.