Directory Services

Composing SPNs for an RpcNs Service

The following code example composes the service principal names (SPNs) for an RPC service that has an entry in the RpcServices container in the directory. An RPC service uses the RpcNsBindingExport function to create its RpcServices entry.

An RPC service uses this code example to build the SPN or SPNs that identify an instance of the service. The service uses this routine to perform the following tasks:

To register or unregister the SPNs in the directory, when the service is installed or removed. For more information and a code example, see Registering the SPNs for a Service.
Register itself with the RPC authentication service when the service starts. For more information, see Mutual Authentication in RPC Applications.

This code example uses the distinguished name of the service's RpcServices entry to compose the SPN. Before calling this code, call the RpcNsBindingExport function to create the service's RpcServices entry.

This code example calls the DsGetSpn function to build an SPN. The SPN is composed from service class name and the distinguished name of the service RpcServices entry.

[C++]
/***************************************************************************

	SpnCompose()

	Composes a service principal name from a service name and class.

	Parameters:

	pszServiceName - Contains a null-terminated string that contains the 
	name of the service.

	pszServiceClass - Contains a null-terminated string that contains the 
	name of the service class.

	pspn - Pointer to an LPTSTR array that receives the array of SPNs. This 
	array must freed with the DsFreeSpnArray function when it is no longer 
	required.

	pulSpn - Pointer to a unsigned long that receives the number of elements 
	in the pspn array.

***************************************************************************/

HRESULT SpnCompose(LPTSTR pszServiceName, 
				 LPTSTR pszServiceClass, 
				 LPTSTR **pspn, 
				 unsigned long *pulSpn) 
{
	HRESULT hr;
	CComPtr<IADs> spRoot;

	// Get the defaultNamingContext for the local domain.
	hr = ADsGetObject(L"LDAP://RootDSE",
					IID_IADs,
					(void**)&spRoot);
	if(FAILED(hr))
	{
		return hr;
}

	// Get the distinguished name of the current domain.
	CComVariant svarDSRoot;
	hr = spRoot->Get(CComBSTR("defaultNamingContext"), &svarDSRoot);
	 
	/*
	Compose the DN of the service's entry in the RpcServices container, created 
	by a call to RpcNsBindingExport. The entry for an RPC service is in the 
	System/RpcServices container in the defaultNamingContext of the local 
	domain.
	*/

	CComBSTR sbstrDsEntryName = "CN=";
	sbstrDsEntryName += pszServiceName;
	sbstrDsEntryName += ",CN=RpcServices,CN=System,";
	sbstrDsEntryName += svarDSRoot.bstrVal;

	USES_CONVERSION;  // Required for the W2T() macro.
	DWORD status;

	// Build the SPN for this service using the DN and the service class.
	status = DsGetSpn(
		DS_SPN_SERVICE, 	 // Type of SPN to create.
		pszServiceClass, 	// Service class - a name in this case.
		W2T(sbstrDsEntryName),  // DN of the RpcServices for this RPC service.
		0, 				// Use the default instance port.
		0, 				// Number of additional instance names.
		NULL, 			 // No additional instance names.
		NULL, 			 // No additional instance ports.
		pulSpn, 			 // Size of SPN array.
		pspn					// Returned SPN(s).
		);
	 
	return HRESULT_FROM_WIN32(status);
}

500 Internal Server Error

Internal Server Error

The server encountered an internal error or misconfiguration and was unable to complete your request.

Please contact the server administrator at webmaster@systemmanager.forsenergy.ru to inform them of the time this error occurred, and the actions you performed just before this error.

More information about this error may be available in the server error log.

Additionally, a 500 Internal Server Error error was encountered while trying to use an ErrorDocument to handle the request.