We try to configure the Windows AD SSO with Kerberos but we encounter some problems.
We already followed these steps:
1) Creation of a service account in the domain controller named BO_ADmin_XIR3.
2) Creation of the group of users to use BO.
3) Execution of the SETSPN command as follow:
setspn -a BOE120SIA(name of the computer)/(name of the computer) BO_Admin_XIR3
Problem -> the registration is OK but the part "Delegation" in BO_Admin_XIR3 properties is not visible.
Anyway we continued configuring the CMC with the SPN for Kerberos, ading the group etc. but of course the Windows AD did not work.
Anyone knows how to do? Is the command wrong (what should be the command then)?
Thanks in advance
Edited by: Nicolas Vigouroux on Jul 24, 2008 10:32 AM