Hi @SChalakov ,
Thanks for your feedback!
To be honest most of them even don't register an SPN for the listener, but do that for the nodes.
You can check out this article, I believe in the official document.
As the article I provided in my last answer, they all have the same view:
We use SQL Listener to connect with the primary replica in SQL Server Always On. We should create SPN for each availability group SQL Listener. It enables the Kerberos authentication for the client connection. We should use the same SQL Service account for all Availability group replicas.
Based on the current situation, your instance on the same node has different service accounts. (Feel sorry I didn't see it clearly for the first time)
So, my suggestion is you can register SPN for the nodes.
If you want to register an SPN on the Listener, you can try the method I provided in the last answer, and we can use –L parameter with the setspn command to list all available SPN associated with a service account. (If you want to try whether it works on the listener.)
setspn -L <Domain\Service Account>
In addition, hope this article can give you more ideas.
NOTE: What version of SQL Server are you using? This tool may help you if your version is SQL Server 2008 R2 to 2019.
Feel free to share your issues here if you have any confused.
Best regards,
Lucy Chen
If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our Documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
https://docs.microsoft.com/en-us/answers/support/email-notifications