It is generally considered best practice to use domain service accounts to run the SQL services. These accounts must have rights to create SPNs in Active Directory.
Create a new user account in the appropriate OU.
Run the following commands in an elevated cmd with a domain administrator account:
Be sure to change:
computer.lan.domain.com: FQDN of the SQL server
DOMAIN\User: user credentials for the newly created user