6.1.6.6. Windows implementation of Kerberos

6.1.6.6.1. Related Definitions

6.1.6.6.1.1. SPN

Service Principal Names (SPNs) are unique identifiers for service instances (such as HTTP, SMB, etc.).

There are two types of SPNs: one is registered under the machine account of Active Directory. When the authority of a service is Local System or Network Service, the SPN is registered under the machine account. One is to register under the domain user account of Active Directory. When the authority of a service is a domain user, the SPN is registered under the domain user account.