KDC Event ID 11

J

Jon

Good Day,

I have a Windows 2000 GC server running SQL. The event
log on this server is logging Event ID 11, source KDC
every few hours. The details of the error are: There are
multiple accounts with name
MSSQLSvc/servername.domainname.local:1433 of type 10.

This doesn't seem to be an AD multiple account issue, as
I've searched AD for MSSQLSvc as well as
MSSQLSvc/servername.domainname

My search of the KB has turned up no smoking gun.

Users report intermittent disconnects/difficulty
connecting to the SQL database.

The same event is being logged on the other DC, which is
also running DNS for the network.

Any ideas would be appreciated. Thanks in advance.

Jon
 
R

Richard McCall [MSFT]

You have recently change the account that the SQL service starts up as. When
you do this SQL registers the SPN on the user account. The SQL server you
configured with a second account was <computername> in the event log. You
can use ADSIedit to remove the SPN from the First account. If you are unsure
which account the you can use this ldifde and search the output for the SPN
string.

ldifde -f ldif.txt - t 3268 -d "dc=domain,dc=com" -l serviceprincipalname -r
"(serviceprincipalname=MSSQL*)" -p subtree
 
D

David Brandt [MSFT]

You probably already found the article below, but you may want to use ldifde
to dump a list instead and then search for MSSQLSvc/servername.domainname or
MSSQLSvc as there is most likely a dup spn in there.
try something like;
LDIFDE -d DC=<name>,DC=<domainname>,DC=local -f c:\export.txt

then search for the mssqlsvc and see if you don't see dups.
To determine which one was the one in current use, you can delete one of the
MSSQLSvc, then restart the SQL service(s).
The SQL service will re-add the SPN on the currently in use service account.
If it was not readded, then the duplicate has been removed.
(You can make a copy first just to be safe before deleting if question about
it)

305971 Windows 2000 Server Prompts Domain User for Credentials
http://support.microsoft.com/?id=305971

--
David Brandt
Microsoft Corporation

This posting is provided "AS IS" with no warranties, and confers no rights.
Please do not send e-mail directly to this alias. This alias is for
newsgroup purposes only.
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

There are multiple accounts with name MSSQLSvc/... 1
Multiple accounts with the name MSSQLSvc... 2
kerberos - the saga continues 0
kdc 11, but microsoft's fix isn't working.. 2
KDC Error 11 3
KDC Event ID 11 1
Event ID: 11 Event source: KDC 5
KDC error 2

Top