Configuring Kerberos for MOSS 2007
1. Configure SPN for Web Application Pool Account
setspn.exe -A HTTP/’WebApplicationNETBIOSURL’ domain\’ApplicationPoolAccount’
setspn.exe -A HTTP/’WebApplicationFQDNURL’ domain\’ApplicationPoolAccount’
*Using Port numbers with kerberos causes authentication problems within IE, would always suggest using netbios or\and FQDN, if your web application has been configured to use a port number suggest creating an Alternative access mapping.
2. Trust Computer and User for Delegation
AD Users and computers -> Properties of account – Make sure account is trusted and not sensitive
3. Enable Kerberos against the Web Application.
In Central Admin select Authentication Provider and then select Kerberos
For more information please see here:
http://support.microsoft.com/kb/953130
LS UPDATED: 11-Aug-09
Reader Comments
i went to announcements list, clicked on Actions>>View RSS feed.
it displayed a confirmation page, with a subscribe to this RSS feed link.
when i clicked the link, a new page was displayed saying “Page cannot be displayed” with the page titled invalid syntax error.
i have annonymous access on in authentication providor, plz help.