Attempting to Create an SPN Using "setspn" Utility for Kerberos Authentication With WebCenter Portal on Windows Fails with "Error: Duplicate SPN found, aborting operation!"
(Doc ID 2313042.1)
Last updated on OCTOBER 01, 2022
Applies to:
Oracle WebCenter Portal - Version 11.1.1.9.0 to 12.2.1.3.0Information in this document applies to any platform.
Symptoms
Attempting to create a Service Principal Name (SPN) for Kerberos Authentication for WebCenter Portal on Windows fails with error:
ERROR
Duplicate SPN found, aborting operation!
STEPS
Issue can be reproduced with the following steps when the Middleware / WebCenter Portal is installed on a Windows Environment:
- Create an account matching the hostname where the WebCenter Portal domain is installed as per the following documentation:
Fusion Middleware Administering Security for Oracle WebLogic Server
20 Configuring Single Sign-On with Microsoft Clients
Creating a Kerberos Identification for WebLogic Server
Step 1: Create a User Account for the Host Computer - Create the SPN for the HTTP service for the WebLogic Server account as per the following documentation:
Fusion Middleware Administering Security for Oracle WebLogic Server
20 Configuring Single Sign-On with Microsoft Clients
Creating a Kerberos Identification for WebLogic Server
Step 3: Define a Service Principal Name and Create a Keytab for the Service
Here you will see the error.
e.g.:
<DRIVE:\PATH> setspn -A HTTP/<FQ_SERVERNAME> <SERVERNAME>
Checking domain DC=<COMPANY>
HTTP/<FQ_SERVERNAME>Duplicate SPN found, aborting operation!
Changes
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Symptoms |
Changes |
Cause |
Solution |
References |