"Server not found in Kerberos database" can come if the KDC(Key Distribution Center) could not translate the SPN (Server Principal Name) from the KDC request into an account in the Active Directory. This generally happens due to multiple SPN created for the service on domain controller.
Check if multiple SPNs exist for a service. Perform the following on the domain controller to find and delete duplicate SPNs:
- Run "setspn -x" command.
Processing entry 0
HTTP/DC.Domain.COM is registered on these accounts:
Found 1 groups of duplicate SPNs.
- To delete duplicate SPN run following command:
c:\setspn -D HTTP/User1 User1
- Run "setspn -x" command again to verify that the duplicate SPN was removed.
Note: Once a duplicate SPN is deleted, "setspn -x" command should not show any content for the HTTP service.