CS2: 2003 Powershell Enter-pssession 連接到另外一臺(tái)服務(wù)器報(bào)錯(cuò)

客戶問題概括：
用戶反饋在域中一臺(tái)Win 2003 SP2 服務(wù)器使用 Powershell ，“enter-pssession” 鏈接到另外一臺(tái)服務(wù)器無法工作，該服務(wù)器無其他問題.
報(bào)錯(cuò)內(nèi)容:

WSManFault
Message = WinRM cannot process the request. The following error occured while using Negotiate authentication: An unknown security error occurred.
Possible causes are:
-The user name or password specified are invalid.
-Kerberos is used when no authentication method and no user name are specified.
-Kerberos accepts domain user names, but not local user names.
-The Service Principal Name (SPN) for the remote computer name and port does not exist.
-The client and remote computers are in different domains and there is no trust between the two domains.
After checking for the above issues, try the following:
-Check the Event Viewer for events related to authentication.
-Change the authentication method; add the destination computer to the WinRM TrustedHosts configuration setting or use
HTTPS transport.
Note that computers in the TrustedHosts list might not be authenticated.
-For more information about WinRM configuration, run the following command: winrm help config.

解決方法：
排查安全日志發(fā)現(xiàn)此服務(wù)器SPN注冊(cè)有問題,重新注冊(cè)spn后即可, 注冊(cè)spn工具為setspn.exe

舉例:

setspn -l HTTP/Servername 確認(rèn)SPN

setspn -q HTTP/Servername.fqdn

發(fā)現(xiàn)重復(fù)SPN

setspn -x刪除重復(fù)spn