How to Back Up the Master Secret

You can back up the master secret from the master secret server onto an NTFS file system or removable media, such as a floppy disk.

You must be a Single Sign-On Administrator and a Windows administrator to perform this task. The SSO system will prompt you for a password. To restore the secret later, you must specify the same password.

Back up the master secret using the MMC Snap-In

1. On the Start menu, click All Programs, click Microsoft Enterprise Single Sign-On, and then click SSO Administration.

2. In the scope pane of the ENTSSO MMC Snap-In, expand the Enterprise Single Sign-On node.

3. Right-click System, and then click Backup Secret.

Back up the master secret using the command line

1. On the Start menu, click All Programs, and then click Accessories. Right-click Command Prompt, and then click Run As….

2. Select the appropriate Administrator, and then click OK.

3. At the command line, go to the Enterprise Single Sign-On installation directory. The default installation directory is <drive>:\Program Files\Common Files\Enterprise Single Sign-On.

4. Type ssoconfig –backupSecret <backup file>, where <backup file> is the path and name of the file where the master secret will be backed up. For example, A:\ssobackup.bak

   Note

   On a system that supports User Account Control (UAC), you may need to run the tool with Administrative privileges.

5. Provide a password to protect this file. You will be prompted to confirm the password and to provide a password hint to help you remember this password.

See Also

How to Generate the Master Secret
How to Restore the Master Secret
Master Secret Server
Managing the Master Secret