Quick Answer: What Are Service Principal Names Used For?

What is SPN in Active Directory?

A service principal name (SPN) is the name by which a client uniquely identifies an instance of a service.

Clients that use Windows Authentication are authenticated by either using NTLM or Kerberos.

In an Active Directory environment, Kerberos authentication is always attempted first..

How do I find service principal name in Active Directory?

View SPNs in Active Directory After enabling it, go to the desired AD object, choose Properties and go to the Attribute Editor tab: Then look for the attribute servicePrincipalName and click Edit. Here you will see a list of all the SPNs and also the ability to add SPNs.

How do I get a service principal key?

Go to Azure Active Directory >> App Registrations >> Select All Apps from the dropdown menu >> find your app and click on it. The service principal will be the application Id and the secret will be the key under settings.

How do you create a service principal?

Create a service principal that uses a client secret credentialSign in to the Azure portal using your Azure account.Select Azure Active Directory > App registrations > New registration.Provide a name for the app.Select the appropriate Supported account types.More items…•

What is a service principal?

A service principal is the local representation, or application instance, of a global application object in a single tenant or directory. … The service principal object defines what the app can actually do in the specific tenant, who can access the app, and what resources the app can access.

What is service principal name SQL?

Beginning with SQL Server 2008, support for service principal names (SPNs) has been extended to enable mutual authentication across all protocols. … SPNs are used by the authentication protocol to determine the account in which a SQL Server instance runs.