Find the SharePoint application pool identity and port
SharePointapplication pool identity and port
Make sure that you create a list of web applications that are going to be shared through the
- OpenWindowsInternet Information Services (IIS) Manager.Make sure that you record any additional port numbers that are assigned if a web application was extended to create alternate access mappings.
- Find the Application Pool identity in theApplication Poolslist view or inSharePoint Central Administration > Security > Configure service accounts.In most instances, for Kerberos constrained deleagtion (KCD) to work properly, the application pool identity user must be the same for all application pools whose applications will be accessed by theDocsservice. This means you cannot have different application pools running under different users.
- InSharePoint Central Administration, on theWeb Applicationstab, find the port for each of the web applications listed. Look in theAlternate Access Mappingsview as necessary.
- In theSharepoint Central Administration, open theApplication Management, choose the web application and clickAuthentication Providersin the ribbon bar. Make sure that the authentication type for each web application is set toWindowsand thatNegotiate (Kerberos)is enabled underIIS Authentication Settings.In certain scenarios, switching to Negotiate (Kerberos) might require enabling Kernel-mode authentication in IIS for the corresponding IIS site. For more information, visit the MSDN Library to see Service Principal Name (SPN) checklist for Kerberos authentication with IIS 7.0/7.5.