I am thinking about taking a service that runs on multiple servers in my domain currently as "NETWORK SERVICE" and configuring it to run as an AD domain account for various reasons. If I have this one account running the same service under multiple servers, do I need to create SPN's for each of the machines and services it runs? Would I need to worry about creating SPN's at all?
If the answer is no, then what is the proper role of an SPN?
Here is the Technet on Service Principal Names. Give it a read.
We use a Scheduled Tasks Admin Account to run all our tasks. We have it in the Users OU. This is available on all computers on the domain to be used for scheduled tasks.
The user is a member of Administrators, Backup Operators, Domain Users, Local Administrators, Replicator, and Server Operators.
Hope that helps