hyper v over smb3 access denied

Hello Yall's,

  Wanted to get some advise im getting some error .

Domain Dc 2003 and 2008, forest level is 2008.

failover cluster setup:

4 servers, 2 Hyper-v 2012r2 and 2 SOFS (CIB) 2012r2.

Hyper-v Setup

the other 2 are cluster HyperV 2012 servers (HV1 & HV2). I'm able to perform most HyperV Manager functions just fine using (create new VMs, mount drives, mount ISOs, run VMs etc). The problem comes up in this scenario.

• At AD Setup the HV1, HV2 and also the SOFS the   to used Kerberos only (service type CIFS, Hyper-v replication, Microsoft virtual console serverce, Microsoft Virtual System Migration Service) Note: and also test it by changing to use any authentication protocol.
• at SFOS setup Permissions ( administrator Full, everyone full control)Note: test using the computer object no good same problem. I think this is my problem.
• Share setup
•          Create a share
•          Enable Inheritance
•          Permission

• • Share Permissions \\sofs.domain-name.com\share

  • Everyone Full Control

  • Domain Admin Full Control

  • “Network Service” Full Control (Service Accounts object types)

  • Hv1 and HV@ (Computers object types)

• Failover Cluster Setup: DNS failover cluster setup up. Roles SOFS Scole-Out File Server (Scale-Out File Server for Application Data) SMB Protocol 
• Log into HV1 and open Hyper-v Manager.
• Now, if I happen to log into HV2 or HV1 and open Hyper-v Manager and try to make a change (for example, move the VM) I get an Access denied error.
• how to check for "double hop"
• Note: Problem at Failover Cluster Manager Can't see any guest (VMs) on the Note (HV1 and HV2).
• It looks like this.

error.

Failed to load the Virtual Machine.

\\sofs\ShareV1\Vm-test General access denied error.

The operation failed

user "Domain\administrator" failed to create external configuration sote at \\sofs.domain-name.com\share: General access denied error (0x80070005)

at this point don't know what to do

Because these cmdlets only work with the new resource-based delegation, the Active Directory forest must be in “Windows Server 2012” functional level. A functional level of Windows Server 2012 R2 is not required.

Ref:

JoseB blogged about this a while back.  See if this fits:

http://blogs.technet.com/b/josebda/archive/2008/06/27/using-constrained-delegation-to-remotely-manage-a-server-running-hyper-v-that-uses-cifs-smb-file-shares.aspx

Or TaylorB's here:

http://blogs.msdn.com/b/taylorb/archive/2012/03/20/enabling-hyper-v-remote-management-configuring-constrained-delegation-for-smb-and-highly-available-smb.aspx

Using Constrained Delegation to remotely manage a server running Hyper-V that uses CIFS/SMB file shares

http://blogs.technet.com/b/josebda/archive/2008/06/27/using-constrained-delegation-to-remotely-manage-a-server-running-hyper-v-that-uses-cifs-smb-file-shares.aspx