Adding more Gateway Servers

Note: These steps work only if the machines that will host the Gateway Servers are in the same domain as the Files Advanced Web Server.

In order for the KDC ("Key Distribution Center") Kerberos server to be able to authenticate users to the gateway server, the gateway service must be registered with the KDC server by running setspn and specifying the hostname of the server on which it is running as the 'user' in the setspn command.

For any Gateway Servers that reside on a different machine from the Files Advanced Web Server

1. Open the command prompt.
2. Enter the following setspn command: setspn -s HTTP/computername.domain.com computername

   For example, if you gateway server is running on host 'cody' in the domain, run this command:

   setspn -s HTTP/cody.acme.com cody

3. If your gateway server is running on a non-default port (i.e., a port other than 443), you should also register an SPN using the port number; e.g., if your gateway server is running on port 444:

   setspn -s HTTP/cody.acme.com:444 cody

4. Repeat this section for all additional Gateway servers.