I’m using an operator install of Ansible Automation Platform 2.5 on OpenShift.
We have multi-homed WIndows servers I want to connect to with WinRM and the interfaces are handled with different FQDNs. I am authenticating for WinRM via Kerberos, but the FQDN I need to connect to isn’t a HOST SPN. A ping template successfully connects to the server if I use an SPN that exists as a HOST entry.
For example:
setspn -L myhost
HOST/myhost
HOST/myhost.interface1.domain.local
TERMSRV/myhost.interface2.domain.local
Connection works fine if I use myhost.interface1.domain.local as my FQDN in my inventory.
How can I tell ansible with Kerberos to connect using myhost.interface2.domain.local?