June 1, 2012 at 4:15 am
I'm trying to fin a way to use powershell remoting and ssrs on the same machine.
We need them both to use Kerberos
WinRm doesn't work with ntlm and we dont want to provide passwords in our scripts
On SSRS, we use kerberos delegation with some SQL databases
Lets say machine name is Srv1
ssrs ("ReportServer") runs under a domain usercode "dom/usr_ssrs"
winrm runs under the "Network Service"
They both seem to use HTTP protocol
To make ssrs work I need to add these SPN:
HTTP/Srv1 for "dom\usr_ssrs"
HTTP/Srv1.dom for "dom\usr_ssrs"
Adding these will break winrm
What can be done to make both work ?
June 1, 2012 at 5:14 am
Suggest check with windows server expert on msdn , one link on similar issue seems like a bug.
Cheers
Sat
Cheer Satish 🙂
June 1, 2012 at 5:24 am
Thanks SSC-Enthusiastic,
I'll do that
Alren
August 3, 2012 at 12:54 am
The solution to this problem is that you have to use another DNS alias.
Kerberos doesn't resolve DNS, so for authentication you can use different DNS names for the same machine.
In the example above, you can create a specific DNS entry for SSRS
HTTP/Srv1.ssrs.dom for "dom\usr_ssrs"
Hope this will help.
Alren
Viewing 4 posts - 1 through 3 (of 3 total)
You must be logged in to reply to this topic. Login to reply