Novell unveils ZENworks Suite

So your seeing this exception in your WCF client application after installing SP1 on .NET Framework 3.5

System.ServiceModel.Security.MessageSecurityException occurred Message="The HTTP request is unauthorized with client authentication scheme ‘Negotiate’. The authentication header received from the server was ‘Negotiate

Set up a cNAME in DNS for the servername you are using in database urls. Use setspn -a HOST/CNAME domain\apppooluser Change all the database urls to this CNAME Do an iisreset Test

For example if the database urls are …..

Create a  CNAME CCFALIAS in DNS setspn -a HOST/CCFALIAS ccf\aspuser Change all database urls to ccfalias iisreset Test if you reach /urls with this alias from web servers and from clients

Be careful not to set HOST/CCFSERVER spn for aspuser. Note we are setting HOST/CCFALIAS spn which is CNAME for ccfserver in DNS. If by mistake you set host/ccfserver it can wreak havoc  for Kerberos.