2.276 Attribute sPNMappings

This multivalued attribute contains a list of service principal names (SPNs) to show the equivalence of SPN types. The SPN is the name a client uses to uniquely identify an instance of a service. If an implementer installs multiple instances of a service on computers throughout a forest, each instance has to have its own SPN. A given service instance can have multiple SPNs if there are multiple names that clients might use for authentication. For example, "ldap/..." SPNs could be mapped so that they are equivalent to "host/..." SPNs. For more information on Active Directory usage, refer to [MS-DRSR] section 4.1.4.2.19.

 cn: SPN-Mappings
 ldapDisplayName: sPNMappings
 attributeId: 1.2.840.113556.1.4.1347
 attributeSyntax: 2.5.5.12
 omSyntax: 64
 isSingleValued: FALSE
 schemaIdGuid: 2ab0e76c-7041-11d2-9905-0000f87a57d4
 systemOnly: FALSE
 searchFlags: 0
 systemFlags: FLAG_SCHEMA_BASE_OBJECT
 schemaFlagsEx: FLAG_ATTR_IS_CRITICAL

Version-Specific Behavior: First implemented on Windows 2000 Server operating system.

The schemaFlagsEx attribute was added to this attribute definition in Windows Server 2008 operating system.