Attempting to Create an SPN Using "setspn" Utility for Kerberos Authentication With WebCenter Portal on Windows Fails with "Error: Duplicate SPN found, aborting operation!"

(Doc ID 2313042.1)

Last updated on OCTOBER 04, 2017

Applies to:

Oracle WebCenter Portal - Version 11.1.1.9.0 to 12.2.1.3.0
Information in this document applies to any platform.

Symptoms

ACTUAL BEHAVIOR


Attempting to create an SPN for Kerberos Authentication for WebCenter Portal on Windows fails with error:

 


ERROR

Duplicate SPN found, aborting operation!

 

 

STEPS

 

Issue can be reproduced with the following steps when the Middleware / WebCenter Portal is installed on a Windows Environment:

 

  1. Create an account matching the hostname where the WebCenter Portal domain is installed as per the following documentation:

    Fusion Middleware Administering Security for Oracle WebLogic Server
    20 Configuring Single Sign-On with Microsoft Clients
    Creating a Kerberos Identification for WebLogic Server
    Step 1: Create a User Account for the Host Computer


  2. Create the SPN for the HTTP service for the WebLogic Server account as per the following documentation:

    Fusion Middleware Administering Security for Oracle WebLogic Server
    20 Configuring Single Sign-On with Microsoft Clients
    Creating a Kerberos Identification for WebLogic Server
    Step 3: Define a Service Principal Name and Create a Keytab for the Service


    Here you will see the error.
    e.g.:

    C:\temp> setspn -A HTTP/myhost.example.com myhost
    Checking domain DC=example,DC=com
    HTTP/myhost.example.com

    Duplicate SPN found, aborting operation!

     

 

Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms