Hello,
I'm doing a proof of concept multi server Sharepoint farm in Azure, with a vendor recommendation of using Kerberos authentication.
I've never actually set up a multi server farm like this before, it's always been a 1 SQL to 1 Web Server which contains the App roles as well.
I currently have:
SQL1
App1
App2
Wfe1
Wfe2
I am using the following accounts in my farm:
FarmSetup
SPAdmin
SPSapp
SPWapp
I have successfully been able to join App1 to SQL1 without issue, to begin provisioning the farm.
I am able to successfully join a farm through the App2, WFE1/2 through the Sharepoint Products Config Wizard, by entering the SQL1 and providing the pass phrase.
There seems to be a link to the Central Admin site hosted upon App1 in IE that is triggered after this, which no matter what account I use, I seem to be bouncing off it.
I attempt to use spadmin, farmsetup to get through it and cannot.
When attempting to use farmsetup, I get a Kerberos error about a malformed packet, which I have resolved, by setting the spn on for the farmsetup account.
When I check in Central Admin from App 1, App 2 or WFE1/2 are available as Servers in the farm, however, when I click on the Server Names, I get this site hasn't been shared with you.
I'm at a little bit off a loss to determine where the issue lies.