locked
Kerberos issue with custom reports on Server 2012 RRS feed

  • Question

  • Hi,

    The first time I install CRM 2011 RU13 on a Server 2012 environment and all is fine except Kerberos (offcourse ;-) )

    The custom reports are not working, stating "The target principal name is incorrect" in the SSRS server log.

    Here is my configuration :

    CRM Web server is a Windows 2012 server called "serveur-crm" and is running on port 5555 only http.

    CrmAppPool is running as PHACOBEL\crmservice

    I have following settings for windows authentification on the CRM website :

    authPersistNonNTLM = false,authPersisSingleRequest = False, no extended Protection,Provider = Negotiate,UseAppPoolCredentials = True,useKernelMode = false

    setspn -l PHACOBEL\crmservice returns :

    http/serveur-crm.phacobel.com:5555
    http/serveur-crm:5555

    SQL and SSRS is on another server 2012 machine called "Serveur-sql"

    The SSRS Service is running on 'Network Service'.

    I can't see what's wrong in the setup, any idea's?

    Regards,

    Sven Peeters

    Friday, April 19, 2013 9:10 AM

Answers

  • Hi Sven,

    you need to add the following SPN's as well:

    HTTP/servername
    HTTP/sername.fqdn


    Visit my blog for CRM material, improving performance, kerberos, IFD, development tips, etc. :) http://quantusdynamics.blogspot.com

    • Marked as answer by Sven_Peeters Friday, April 19, 2013 6:32 PM
    Friday, April 19, 2013 3:17 PM
    Answerer

All replies