Troubleshooting Kerberos Double Hop - Basic

Client
IE Enhanced Security

Domain Controller
Trust computer for delegation

SharePoint Server

Trust computer for delegation

Group Policy - SERVICE, Administrators, SP_Admin
1. Act as a part of operating system
2. Impersonate a client after authentication

SP_Admin
Account is trusted for delegation
Account is not sensitive

SPN
SQL: SQL_Admin

MSSQLSVC/MySQL:1433
MSSQLSVC/MySQL.contoso.com:1433

SharePoint: SP_Admin

http/share
http/share.contoso.com