PowerScale: OneFS: How to view an SPN list in a Microsoft Active Directory environment
Summary: How to view an SPN list in a Microsoft Active Directory environment.
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Instructions
Introduction
Whenever a client identifies a service instance, a service principal name (SPN) is assigned to that instance. This SPN is unique, even for multiple service instances on computers with an Active Directory environment. If multiple names are used by clients for authentication purposes, a service instance is assigned multiple SPNs, one unique SPN for each name. For more information, see the Service Principal Names article in the Microsoft Dev Center.
In addition, you can manually create SPNs for the machine account. See "How to create SPN accounts to allow Kerberos authentication using SmartConnect DNS entries," KB 22042 .
In OneFS, if a cluster notifies you if SPNs are missing, you must find out which ones are missing. See "Authentication services can fail if the Service Principal Name (SPN) is incorrect or missing," 89649 .
Details
To view a list of SPNs that are registered against the cluster's machine account, run the following command:
isi auth ads spn list
Output similar to the following is displayed, where "
MyCluster" is the name of the host computer on which the service instance is running, and MY.DOMAIN.CORP is the name of the domain:
SPNs registered for MyCluster:
HOST/MyCluster
HOST/MyCluster.MY.DOMAIN.CORP
Affected Products
IsilonArticle Properties
Article Number: 000020270
Article Type: How To
Last Modified: 27 Nov 2025
Version: 4
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.