Help with webservices

Ok, this is what I have for the services running.

Microsoft Business Web Services: Network Service
Microsoft Dynamics NAV Server: Network Service
SQL MSSQLSERVER: sqlservices


so we have:

setspn -A InstanceName/FullyQualifiedDomainNameOfServer:Port Domain \User (original)

becomes:

setspn -A DynamicsNAV/sqlservercomputername:7046 companydomainname \Network Service?

or

setspn -A DynamicsNAV/SQLserverComputerName:7046 CompanyDomainName \SQLserverComputerName ?

kine wrote:

No...

You need to do one spn for the server where the NAV server is running. It will be:

setspn -A DynamicsNAV/navservername:7046 companydomainname\navservername$

(you will use server account because you are using system account for the service, else it is the domain account under which the service is running)

And you need one spn for SQL server itself:

setspn -A MSSQLSvc/sqlservername:1433 comanydomainname\sqlservices


MSSQLSvc is name of the default instance of SQL server, if you are using named instance, you need to use the instance name instead.

Ok I have done this and both were successful. (Updated object)

Now a question on step #5 please...

To delegate access to the SQL Server service
1. On any server computer in the domain, click Start, and then click Run.
2. In the Open field, type dsa.msc.
This opens the Active Directory Users and Computers utility.
3. To configure delegation, the functional level for the domain must be Windows Server 2003 or higher. To verify the domain functional level, right-click the node for the domain where you have installed Microsoft Dynamics NAV, and then click Raise Domain Functional Level. If the level is not at least Windows Server 2003, then raise it to that level.
4. Right-click the node for the domain where you have installed Microsoft Dynamics NAV, and then click Find.
5. In the Find Users, Contacts, and Group dialog box, type the name of the domain user in the Name field, and then press ENTER.
6. In the Search results area, right-click the domain user, and then click Properties.
7. On the Delegation tab, click Trust this user for delegation to specified services only, and then click Use Kerberos only.
8. Click Add to open the Add Services dialog box.
9. In the Add Services window, click Users or Computers, and then type the name of the domain user.
10. In the list of services for the domain user, click MSSQLSvc, which is the name of the SQL Server service.


Which user? navservername$ ?? because that didn't work (it didn't find it)
How do I find Network Service under Active Directory?


I really appreciate your help!

yukon wrote:

Hi Votuc,

Which user? navservername$ ?? because that didn't work (it didn't find it)
How do I find Network Service under Active Directory?

If your sql is running under local system account, you can't do this step. So how to do it? You need to delegate with which server/pc is running for sql. If you not clear, please attachment.

Hope this help to you.

Best Regards,
Yukon

I am using this service on Microsoft Dynamics NAV Server and Microsoft Business Web Services



MSSQLSERVER is different:

Hello,

Ok I changed the logon account to a Active Directory account (NavService)

RTC opens fine.

Did SPN and Kerberos for NAVService instead of Network Service.

Now I am getting this error in Outlook when I click "test connection"



and when I try to connect to the Webservice on the browser, I now get a login prompt (did not happen before - it showed me an XML webpage). What does all this mean?

kine wrote:

Is your windows account inserted into NAV and have needed roles?

Yes

I feel like I have tried everything - -- but must be missing something? ](*,)

kine wrote:

That it is asking for login in IE is standard. Just enter your login and password. It should work...

It does not work -- it says "incorrect user name or password" I have tried multiple accounts, all super users with Administrator rights.