This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(252.8, 84%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJD%3C/text%3E%3C/svg%3E)
Hello,
I don't know any better way of reporting a bug to MS so here goes...Basically "Kerberos Configuration Manager for SQL Server" does not work if AD's NETBIOS name contains hyphen.
For example it does not work if domain's NETBIOS name is "TEST-AD" but it works if it is "TESTAD".
Error message you get is:
Error: Access of User Principal information failed System.DirectoryServices.AccountManagement.PrincipalServerDownException: The server could not be contacted. ---> System.DirectoryServices.Protocols.LdapException: The LDAP server is unavailable.
Based on what I looked the code with dnSpy there seems to be a problem with regex in line 291 in [KerberosCM.WMIHelper]
Screenshot below shows it working normally when NETBIOS name doesn't contain hyphen, it stays as DEMO
Here you can see it failing when NETBIOS name is "XXXX-VIRHE", it becomes "VIRHE" in the regex
Also, I think the same problem is somewhere else in the code too, if you manually edit the return value to match the correct domain the program seems to work but it reports your username in incorrect format in the GUI (i.e. TEST-AD\Admin would show up AD\ADMIN)
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(28.799999999999997, 2%, 12%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESX%3C/text%3E%3C/svg%3E)
Hi,
For this bug issue, you can post it in the feedback site.
https://feedback.azure.com/d365community/forum/04fe6ee0-3b25-ec11-b6e6-000d3a4f0da0
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(147.20000000000002, 31%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EEM%3C/text%3E%3C/svg%3E)
Hey, as I stumbled also other this, I changed the regex in the il code with dnspy to get this working with hyphens.
Now I was able to execute the tool. Thanks :)
Hah last year I actually opened a paid support request with Microsoft regarding the bug and it went so insanely bad. Like I sent them the screenshots showing where the error is in the code etc. and they had no idea what to do :D