apisharepointkerberosreverse-dnsmit-kerberos

Server not found in Kerberos database due to multiple DNS entries for single IP


There is a SharePoint which I'm accessing a file using REST API through Kerberos authentication , the problem is that the SharePoint where it is located has two DNS entries for a single IP, whenever it resolves to domain name 1, the API is getting authenticated and I'm getting back response , but whenever the DNS is resolving to domain name 2 , the authentication fails with error : ' server not found in Kerberos database ' And this DNS resolution is random

What needs to be done to solve this problem ? Or how can I add this second DNS entry to Kerberos database ??

"The network administrators are not ready to remove 2nd DNS entry ! "


Solution

  • You just need to add an SPN (servicePrincipalName) for the second domain name to the AD service account or computer object that runs SharePoint in the form of http/your.second.domain.com.