none
spn and logon as a service account RRS feed

  • Question

  • What is difference between SETSPN and logon as service

    Are both same thing and same use of them?
    Friday, May 6, 2016 3:26 PM

Answers

  • What is difference between SETSPN and logon as service

    Are both same thing and same use of them?

    Service accounts ;  Windows Services account is an administrative account that is
    required to access any of the Windows services. A Windows Services account can provide
    you with a comprehensive collaboration, computer management, and data storage solution.

    Service Principal Names ; A service principal name (SPN) is a unique identifier of a service instance. SPNs are used by Kerberos authentication to associate a service instance with a service logon account. This allows a client application to request that the service authenticate an account even if the client does not have the account name

     

    This posting is provided AS IS with no warranties or guarantees,and confers no rights. Best regards Burak Uğur

    Friday, May 6, 2016 7:57 PM
  • totally different.  You can't compare like this.

    SPN and SETSPN

    http://social.technet.microsoft.com/wiki/contents/articles/717.service-principal-names-spns-setspn-syntax-setspn-exe.aspx

    A service principal name (SPN) is the name by which a Kerberos client uniquely identifies an instance of a service for a given Kerberos target computer. If you install multiple instances of a service on computers throughout a forest, each instance must have its own SPN. A given service instance can have multiple SPNs if there are multiple names that clients might use for authentication. For example, an SPN always includes the name of the host computer on which the service instance is running, so a service instance might register an SPN for each name or alias of its host.

    https://technet.microsoft.com/en-us/library/cc773257%28v=ws.10%29.aspx?f=255&MSPPError=-2147217396

    Logon as service

    https://technet.microsoft.com/en-us/library/cc739424(v=ws.10).aspx


    Santhosh Sivarajan | Houston, TX | www.sivarajan.com
    ITIL,MCITP,MCTS,MCSE (W2K3/W2K/NT4),MCSA(W2K3/W2K/MSG),Network+,CCNA

    My Books: | Windows Server Security | Windows Server 2012

    Blogs | Twitter | LinkedIn | Facebook|

    This posting is provided AS IS with no warranties, and confers no rights.

    Sunday, May 8, 2016 12:43 PM
    Moderator

All replies

  • Raj, Sorry, I failed to understand. Could you elaborate more.

    Actually, SetSPN is the application used to manage SPNs for Windows computers.


    Devaraj G | Technical solution architect

    Friday, May 6, 2016 5:23 PM
  • What is difference between SETSPN and logon as service

    Are both same thing and same use of them?

    Service accounts ;  Windows Services account is an administrative account that is
    required to access any of the Windows services. A Windows Services account can provide
    you with a comprehensive collaboration, computer management, and data storage solution.

    Service Principal Names ; A service principal name (SPN) is a unique identifier of a service instance. SPNs are used by Kerberos authentication to associate a service instance with a service logon account. This allows a client application to request that the service authenticate an account even if the client does not have the account name

     

    This posting is provided AS IS with no warranties or guarantees,and confers no rights. Best regards Burak Uğur

    Friday, May 6, 2016 7:57 PM
  • totally different.  You can't compare like this.

    SPN and SETSPN

    http://social.technet.microsoft.com/wiki/contents/articles/717.service-principal-names-spns-setspn-syntax-setspn-exe.aspx

    A service principal name (SPN) is the name by which a Kerberos client uniquely identifies an instance of a service for a given Kerberos target computer. If you install multiple instances of a service on computers throughout a forest, each instance must have its own SPN. A given service instance can have multiple SPNs if there are multiple names that clients might use for authentication. For example, an SPN always includes the name of the host computer on which the service instance is running, so a service instance might register an SPN for each name or alias of its host.

    https://technet.microsoft.com/en-us/library/cc773257%28v=ws.10%29.aspx?f=255&MSPPError=-2147217396

    Logon as service

    https://technet.microsoft.com/en-us/library/cc739424(v=ws.10).aspx


    Santhosh Sivarajan | Houston, TX | www.sivarajan.com
    ITIL,MCITP,MCTS,MCSE (W2K3/W2K/NT4),MCSA(W2K3/W2K/MSG),Network+,CCNA

    My Books: | Windows Server Security | Windows Server 2012

    Blogs | Twitter | LinkedIn | Facebook|

    This posting is provided AS IS with no warranties, and confers no rights.

    Sunday, May 8, 2016 12:43 PM
    Moderator