You are currently offline, waiting for your internet to reconnect

Your browser is out-of-date

You need to update your browser to use the site.

Update to the latest version of Internet Explorer

An update for Setspn.exe in Windows Server 2003 is available

Support for Windows Server 2003 ended on July 14, 2015

Microsoft ended support for Windows Server 2003 on July 14, 2015. This change has affected your software updates and security options. Learn what this means for you and how to stay protected.

SUMMARY
This article (KB977158) contains an update for the Setspn.exe support tool in Windows Server 2003. This update enables the Setspn.exe support tool to identify duplicate service principal names (SPNs) in Active Directory, and adds support for some new switches. For detailed information, see the “More information” and “Update information” sections of this article.

Download the update by clicking the appropriate link in the “How to obtain this update” section.
MORE INFORMATION
The Setspn.exe support tool is included in Microsoft Windows Server 2003 Support Tools.

Before you upgrade the Setspn.exe support tool, it cannot identify duplicate service principal names (SPNs) in Active Directory.

Notes
  • Only limited support is available for the Setspn.exe support tool.
  • Only the English versions of the hotfix binaries are available in this update.
After you apply this update, the Setspn.exe support tool will support the following new switches:
SwitchDescriptionUsage
-S add arbitrary SPN after verifying no duplicates exist setspn -S SPN accountname
-Qperform queries of SPNs setspn -Q SPN
-Xsearch for duplicate SPNssetspn -X
-Fperform queries at the forest level, instead of at the domain levelsetspn -F
Notes
  • The accountname placeholder represents the name of the user account or the domain\name of the destination computer and the user account.
  • When you use the setspn command together with the -X switch, the Setspn.exe support tool takes a long time and uses a large amount of memory to search for duplicate SPNs and for forest-wide duplicate SPNs.
For example, you can use the following command to register "http/daserver" as the SPN for computer "daserver1" if no such SPN exists in the forest:
setspn -F -S http/daserver daserver1

Update information

How to obtain this update

The following files are available for download from the MicrosoftDownload Center:
Operating systemUpdate
All supported x86-based versions of Windows Server 2003DownloadDownload the update package now.
All supported x64-based versions of Windows Server 2003 DownloadDownload the update package now.
All supported IA-64-based versions of Windows Server 2003DownloadDownload the update package now.

Installation path of the update

During the update installation process, the system detects whether the earlier version of Windows Server 2003 Support Tools is installed on the computer.
  • If Windows Server 2003 Support Tools is already installed, the installation path of the update is the installation path of the Windows Server 2003 Support Tools. Also, the Setspn.exe binary in this path is updated.
  • If Windows Server 2003 Support Tools is not installed, the default installation path of the update is as follows: % ProgramFiles%\Support Tools\.
Notes

Prerequisites

To apply this upgrade, you must have Windows Server 2003 Server Pack 2 (SP2) installed on the computer.
For more information about how to obtain the latest service pack for Windows Server 2003, click the following article number to view the article in the Microsoft Knowledge Base:
889100 How to obtain the latest service pack for Windows Server 2003

Restart requirement

You do not have to restart the computer after you apply this update.

Registry information

To use the update in this package, you do not have to make any changes to the registry.

File information

The English (United States) version of this update installs files that have the attributes that are listed in the following tables. The dates and times for these files are listed in Coordinated Universal Time (UTC). The dates and times for these files on your local computer are displayed in your local time and with your current daylight saving time (DST) bias. Additionally, the dates and times may change when you perform certain operations on the files.
Windows Server 2003 file information notes
  • In addition to the files that are listed in these tables, this update also installs an associated security catalog file (KBnumber.cat) that is signed with a Microsoft digital signature.
For all supported x86-based versions of Windows Server 2003
File nameFile versionFile sizeDateTimePlatform
Setspn.exe5.2.3790.455722,52821-Jul-200912:20x86
For all supported x64-based versions of Windows Server 2003
File nameFile versionFile sizeDateTimePlatform
Setspn.exe5.2.3790.455728,16022-Jul-200910:45x64
For all supported IA-64-based versions of Windows Server 2003
File nameFile versionFile sizeDateTimePlatform
Setspn.exe5.2.3790.455751,71222-Jul-200910:45IA-64
Windows Server 2003 Setspn.exe update support tool duplicate SPNs kerberos kdc kdcsvc
Properties

Article ID: 970536 - Last Review: 02/12/2011 09:34:00 - Revision: 3.0

  • Microsoft Windows Server 2003, Web Edition
  • Microsoft Windows Server 2003, Datacenter Edition (32-bit x86)
  • Microsoft Windows Server 2003, Standard Edition (32-bit x86)
  • Microsoft Windows Server 2003, Standard x64 Edition
  • Microsoft Windows Server 2003, Enterprise Edition (32-bit x86)
  • Microsoft Windows Server 2003, Enterprise x64 Edition
  • Microsoft Windows Server 2003, Enterprise Edition for Itanium-based Systems
  • atdownload kbinfo kbhowto kbexpertiseadvanced kbsurveynew KB970536
Feedback