DCSIMG
How to change the BizTalk SSO account and stay alive! - Shuki Licht

How to change the BizTalk SSO account and stay alive!

Published 11 November 08 02:32 PM | Josh

After several days(and one night...) we found how to change the SSO accounts and let the BizTalk (NLB servers) to keep alive.

first, you must must must keep(backup) the SSO master secret. W/O that you will never have an option to roll back  and you will need to reconfigure the BizTalk from scratch.

1. go to Drive:\Program Files\Common Files\Enterprise Single Sign-On folder with command line

2. type: ssoconfig -backupsecret BackupFile (now you can rest...you have the backup)

3. type: ssomanage -disablesso

4. create an xml file with this schema:

<sso>
<globalInfo>
<ssoAdminAccount>Domain\Group</ssoAdminAccount>
<ssoAffiliateAdminAccount>Domain\Group</ssoAffiliateAdminAccount>
</globalInfo>
</sso>

5. type: ssomange -updatedb xmlFile

6. type ssomange -enablesso

7. now you can start the service (with the new user)

8. after the service is running - just type: ssoconfig -restoresecret BackupFile

9. Now the BizTalk should start work properly

Shuki

Comments

# EdOverIp ?? How NOT to move a BizTalk 2006 R2 server to a different domain said on November 11, 2008 08:34 PM:

Pingback from  EdOverIp ?? How NOT to move a BizTalk 2006 R2 server to a different domain

Leave a Comment

(required) 
(required) 
(optional)
(required) 

Enter the numbers above: