ENTERPRISE

SharePoint 2010: Business Connectivity Services - The Secure Store Service (part 1) - Configuring the Secure Store Service

- How to Configure IPv6 on Windows Server 2008 R2

- SQL Server 2008 : Using Temporary Tables in Stored Procedures

- Windows 7 : Tweaking Your WDS Server - Using WDS to Name Machines

- Creating and Managing Views in SQL Server 2008 : Creating Views

11/4/2012 7:44:57 PM

The Secure Store Service is used to store accounts inside SharePoint to use when authorizing against databases that require authorization, etc. It typically stores credentials in the form of username and password, but it can also store tokens, pin numbers, etc.
The Secure Store Service application works by a scheme being defined providing authentication information. Then the user- or group-level permissions to pass to the database are mapped in the Secure Store application. The Secure Store Service allows connections using the federation, delegation, or impersonation level. In cases of Business Connectivity Services, the mapped credentials are passed from the Secure Store to the data source.

1. Configuring the Secure Store Service

In this section and the ones that follow, we will go through the procedure of configuring the Secure Store Service, while explaining the individual steps and configuration options. The first step is to ensure that the Secure Store Service is started:

Navigate to Central Administration => Manage Service on Server (Figure 1).
Locate the service called Secure Store Service.
If the Secure Store Service is not started, then start it.

Figure 1. Services overview

With the Secure Store Service started, it is now possible to provision a Secure Store Service application as follows:

Navigate to Central Administration => Manage Service Application (Figure 2).
Click the New button on the ribbon.
Click Secure Store Service to open the dialog for creating the new service application.

Figure 2. Provisioning the Secure Store Service application

The Create New Secure Store Service Application dialog (Figure 3 ) allows administrators to specify a database where the credentials are stored. The credentials are encrypted and accessible by the Secure Store Service application. To create the Secure Store Service, do the following:

Enter a unique service name.
Specify the database instance name where the Secure Store database will be created. Also specify a name for the Secure Store database.
Choose or create an application pool identity, which the Secure Store Service application will run under. It is suggested to use a unique account for this particular service application for security reasons.
Click OK. The Secure Store Service application and proxy should now be created.

Figure 3. Provisioning the Secure Store Service application

With the new Secure Store Service application created, it must be configured with a pass phrase (Figure 4) that allows it to securely encrypt and decrypt the stored credentials from the database.

Click the Secure Store Service application to begin configuring it.
If it is the first time the Secure Store Service application is being configured, a prompt will appear, asking for a new key to be generated. Click Generate New Key on the ribbon.
Enter a pass phrase, and click OK.

Figure 4. Secure Store Service key generation

Related

SharePoint 2010: Business Connectivity Services - The Secure Store Service (part 2) - Creating a Secure Store Service Application for Impersonating

Other

Visual Studio 2010 IDE : Using, Creating, and Managing Reusable Code Snippets

Visual Studio 2010 IDE : Managing User Settings

Aerocool Strike-X X-1000

Logisys PC Remote Start / Reset Controller (RMPC2)

Xyfi Wi-Fi And 3G Router

Windows 8 : End Game? (Part 4)

Windows 8: End Game? (Part 3)

Windows 8: End Game? (Part 2)

Windows 8: End Game? (Part 1)

Microsoft Azure : Azure AppFabric - Access Control (part 2) - Configuring Access Control for Jupiter Motors

Most View

- Belkin AC1200 DB Wi-Fi ADSL Router

- Ditch Your Laptop For Your Phone (Part 1)

- Installing and Configuring SharePoint 2013 : Creating the Farm (part 1)

- Using Services for UNIX to Integrate UNIX Systems with an Active Directory/Exchange Server 2007 Environment

- Apple - Celebrating 7 Years Of Success

- ASP.NET 4 : Error Handling, Logging, and Tracing - Handling Exceptions

- Security Pros Get Caught Out By QR Codes

- Samsung ATIV Tab Review - A Wonderful Windows RT Tablet (Part 2)

- How To Extend Life For Mac (Part 1)

- Edifier E10 Exclaim - Exclamation Mark

Top 10

- Sharepoint 2013 : Developing Applications Using Office Services - What’s New in Access Services

- Sharepoint 2013 : Developing Applications Using Office Services - The New Machine Translation Services

- Sharepoint 2013 : Developing Applications Using Office Services - Word Automation Services and the New PowerPoint Automation Services

- Sharepoint 2013 : Developing Applications Using Office Services - What’s New in Excel Services

- Sharepoint 2013 : Developing Applications Using Office Services - WOPI and the New Office Web Apps Server

- Sharepoint 2013 : Building a BCS-enabled Business Solution : Building an Integrated BCS Solution with an App for SharePoint Containing an App for Office

- Business Connectivity Services in Apps for SharePoint 2013 : Building an App-level BCS Solution for Office 365 SharePoint Online

- Business Connectivity Services in SharePoint 2013 : Adding a Business Data Connectivity Model to Office 365 SharePoint Online

- Remote Event Receivers in Sharepoint 2013 : Introducing Remote Event Receivers

- Windows Server 2008 and Windows Vista : Common GPO Troubleshooting Tools (part 3) - GPResult, GPOTool

site
stats