none
AD FS 2.0

    Question

  • After installed ADFS 2.0 in my Windows 2008 r2 enterprise server, I got an error "The secruity database on the server does not have a computer account for this workstation trust relationship". I can't login except using "local" administrator account.

    In the process of installing AD FS2.0, I got an error saying "spn is not set". so I did "Setspn –a host/DirSvc00.test.com adfs". After that things work fine. Certificate is being exported.

    However, every time I reboot I can't login with "The secruity database on the server does not have a computer account for this workstation trust relationship" error message.

    C:\Windows\system32>setspn -L esdirsvc00

    Registered ServicePrincipalNames for CN=DIRSVC00,CN=Computers,DC=mycompany,DC=com:

            WSMAN/DirSvc00.mycompany.com

            TERMSRV/DirSvc00.mycompany.com

            HOST/DIRSVC00

            RestrictedKrbHost/DirSvc00.mycompany.com

            HOST/DirSvc00.mycompany.com

            WSMAN/DIRSVC00

            TERMSRV/DIRSVC00

            RestrictedKrbHost/DIRSVC00

    Any suggestions of how to get this resolved?

    Thanks.

    Wednesday, March 27, 2013 8:45 PM

Answers

All replies