In cases where a lot of ServicePrincipalNames are tied to a commonly used service account (yes I know there's no good reason to do this), I thought it may be a good idea to check what the maximum number of SPN's on a single account was. The method used for this was adding random generated strings of 10 characters with the parent domain dns suffix added as a HOST/ SPN record. I did try the same test with longer random generated strings, but I came up with the same results.
I have not yet tested in 2008 functional levels, but I was able to test 2000 and 2003 Native.
The numbers I am getting are:
2000 Native: 831 spn's
2003 Native: 1249 spn's
No comments:
Post a Comment