Register SQL2000 in AD

I believe that function registers an SPN to the computer account object in
Active Directory. You can list registered SPN's by using setspn.exe (this exe
may only be on Windows Server):
setspn.exe -l [objectname]
setspn.exe -l SQLSERVER

SQL automatically registers an SQN to the computer account object when it is
installed. You can use setspn to add and remove SPN's. SPN's (service
principal names) are registered in Active Directory objects and used for
client to service authentication. This would be used for SQL Windows
Authentication.

"larry" wrote:

In SQL Server Properties I can "Add this instance of SQL Server to
Active Directory". Where does this added instance show itself?
Thanks
Larry

Thanks Brandon. "setspn -L sqlserver" returns
MSSQLSvc/sqlserver.domain.com:1433, but I was expecting something to
show up in administrative tools\active directory computers. Am I wrong
in thinking this?

Brandon McGarvey wrote:

I believe that function registers an SPN to the computer account object in
Active Directory. You can list registered SPN's by using setspn.exe (this exe
may only be on Windows Server):
setspn.exe -l [objectname]
setspn.exe -l SQLSERVER

SQL automatically registers an SQN to the computer account object when it is
installed. You can use setspn to add and remove SPN's. SPN's (service
principal names) are registered in Active Directory objects and used for
client to service authentication. This would be used for SQL Windows
Authentication.

"larry" wrote:

In SQL Server Properties I can "Add this instance of SQL Server to
Active Directory". Where does this added instance show itself?
Thanks
Larry

I too thought it was going to register the SQL instance in the Computers
container, but it apparently does not. Regardless, the instance is registered
in AD and clients can authenticate to the instance, using Kerberos.

"larry" wrote:

Thanks Brandon. "setspn -L sqlserver" returns
MSSQLSvc/sqlserver.domain.com:1433, but I was expecting something to
show up in administrative tools\active directory computers. Am I wrong
in thinking this?

Brandon McGarvey wrote:
> I believe that function registers an SPN to the computer account object in
> Active Directory. You can list registered SPN's by using setspn.exe (this exe
> may only be on Windows Server):
> setspn.exe -l [objectname]
> setspn.exe -l SQLSERVER
>
> SQL automatically registers an SQN to the computer account object when it is
> installed. You can use setspn to add and remove SPN's. SPN's (service
> principal names) are registered in Active Directory objects and used for
> client to service authentication. This would be used for SQL Windows
> Authentication.
>
> "larry" wrote:
>
>
>>In SQL Server Properties I can "Add this instance of SQL Server to
>>Active Directory". Where does this added instance show itself?
>>Thanks
>>Larry
>>

Thanks

Brandon McGarvey wrote:

I too thought it was going to register the SQL instance in the Computers
container, but it apparently does not. Regardless, the instance is registered
in AD and clients can authenticate to the instance, using Kerberos.

"larry" wrote:

Thanks Brandon. "setspn -L sqlserver" returns
MSSQLSvc/sqlserver.domain.com:1433, but I was expecting something to
show up in administrative tools\active directory computers. Am I wrong
in thinking this?

Brandon McGarvey wrote:

I believe that function registers an SPN to the computer account object in
Active Directory. You can list registered SPN's by using setspn.exe (this exe
may only be on Windows Server):
setspn.exe -l [objectname]
setspn.exe -l SQLSERVER

SQL automatically registers an SQN to the computer account object when it is
installed. You can use setspn to add and remove SPN's. SPN's (service
principal names) are registered in Active Directory objects and used for
client to service authentication. This would be used for SQL Windows
Authentication.

"larry" wrote:

In SQL Server Properties I can "Add this instance of SQL Server to
Active Directory". Where does this added instance show itself?
Thanks
Larry