How to Restore the Master Secret Server

The Enterprise Single Sign-On master secret is stored in an encrypted registry key on the master secret server in the production site. The master secret should be restored to the disaster recovery site as a normal part of disaster recovery preparations.

Use the following procedure to restore the master secret to a computer running BizTalk Server in the disaster recovery site.

  1. On the Start menu, click Run, and then type cmd.

  2. At the command line prompt, change directories to the Enterprise Single Sign-On installation directory. The default installation directory is <drive>:\Program Files\Common Files\Enterprise Single Sign-On.

  3. Type the following command, and then press ENTER:

    ssoconfig -restoresecret <restore file>

    Where <restore file> is the path and name of the file where the backed up master secret is located.

    In order to restore the SSO master secret, you must have previously created a backup of the SSO master secret by following the steps in the topic How to Back Up the Master Secret.

Completion of these steps will copy the backed up SSO master secret to the correct registry location so that the only step required during a disaster recovery event is to update the BizTalk group with the disaster recovery location of the master secret server.