Logging of SPN auto-registration in SQL Server 2008
I noticed today that when SQL Server automatically registers the SPN (service principal name) on startup, it gets logged now in the SQL error log. For example:
The SQL Server Network Interface library successfully registered the Service Principal Name (SPN) [ MSSQLSvc/XYZ.xyzadc01.local:58628 ] for the SQL Server service.
The SQL Server Network Interface library successfully registered the Service Principal Name (SPN) [ MSSQLSvc/XYZSQL.xyzadc01.local:CAESAR ] for the SQL Server service.
The logging example was taken from a SQL Server 2008 instance running on a Windows 2008 failover cluster. We see two SPNs get registered - one by TCP port (58628) and another by instance name (CAESAR).
If there are any failures in the auto-registration of an SPN, this will also get logged. This visibility in the SQL error log should improve overall supportability when Kerberos failures strike...
Comments
- Anonymous
June 01, 2009
PingBack from http://indoorgrillsrecipes.info/story.php?id=3315