Frequently encountered issues

When the spnego.bat script is run, various error messages may appear.

Issue 1

If any of the following messages appears:

  • "Some arguments are missing, please provide the correct arguments."
  • “Too many arguments, please provide the correct arguments”.

Check whether the arguments <FW>, <dns>, <WINDOWS>, <password> and <file> are present. Each of these arguments is needed to run the script.

Issue 2

If the following message appears:

  • "The file keytab_filename already exists, please choose another filename to output the keytab."

A keytab file with the provided name already exists in the folder in which the script is to be run. Rename this file.

Issue 3

If any of the following messages appears:

  • "The setspn program is not present on the system or is not in the path".
  • "The ktpass program is not present on the system or is not in the path".
  • "The reg program is not present on the system or is not in the path".
  • "The ldifde program is not present on the system or is not in the path".

Check whether support tools or the path are present in the system.

Issue 4

If any of the following messages appears:

  • "This computer does not seems to be running Windows XXXX Server or Windows YYYY Server >> %log%".
  • "This computer does not seem to be running a Server edition of Windows".
  • "This script should only be run on a Windows Domain Controller which requires a Server edition of Windows".

Ensure that your version of Microsoft Windows is compatible with the running of the spnego.bat script.

Issue 5

If any of the following messages appears:

  • Creating the user returned an error, please check your arguments.
  • It is possible that your password restrictions applied.
  • Setting the principal name returned an error, please check your arguments.
  • Creating the keytab file did not work, please check your arguments.

A possible solution:

  • The user creation process has been disrupted. Check that the password complies with the security policy.
  • Check that the user running the script has sufficient privileges to create a new one.
  • Check that the user has sufficient privileges to create the service name.
  • Check that the user has sufficient privileges to create the keytab.