I'm trying to delegate KERBEROS authentication from an SQL Server to a file server over OLEDB.
Is there a particular Service Principle Name that is used to delegate credentials from an SQL Server to a file server?
For instance, if I run a SQL Server instance, I have to make a domain username for it to run on...and I have to create a SPN for example:
setspn -S MSSQLSvc/someserver.example.org:50000 example\SQL_srv_account
setspn -S MSSQLSvc/someserver:50000 example\SQL_srv_account
So what would I set for the LanmanServer / Serverservice that runs SMB?
I guess my question is, if my SMB server runs on port 445, then what should my command look like for setting the SPN?
setspn -S <what-goes-here?>/someotherserver.example:445 example\SMB_srv_account
setspn -S <what-goes-here?>/someotherserver:445 example\SMB_srv_account
<what-goes-here?> wouldn't be cifs would it?
P.S. This is a question with a bit of overlap between serverfault and the dba stackexchange.
