1. 获取SSS应用程序的标识
Get-SPServiceApplication
2. 获取指定的SSS应用程序实例
$sss = Get-SPServiceApplication -Identity bc4399ed-a2e0-4397-bf07-cd3d207e630e
3. 启用SSS审计
$sss = Get-SPServiceApplication -Identity bc4399ed-a2e0-4397-bf07-cd3d207e630e Set-SPSecureStoreServiceApplication –Identity $sss –AuditingEnabled –AuditlogMaxSize 15
4. 配置安全存储数据库
$sss = Get-SPServiceApplication -Identity bc4399ed-a2e0-4397-bf07-cd3d207e630e Set-SPSecureStoreServiceApplication –Identity $sss –DatabaseName SecureStoreDB
5. 生成新的主密钥
Update-SPSecureStoreMasterKey –ServiceApplicationProxy da9247cb-9055-4024-817c-714ef98656e1 –PassPhrase SharePoint1
6. 刷新密钥
Update-SPSecureStoreApplicationServerKey –ServiceApplicationProxy da9247cb-9055-4024-817c-714ef98656e1 –PassPhrase SharePoint1
7. 创建应用字段
$windowsUser = New-SPSecureStoreApplicationField –Name "SPAppSvcAccount" –Type WindowsUserName –Masked:$false $windowsPass = New-SPSecureStoreApplicationField –Name "password" –Type WindowsPassword –Masked:$true
8. 创建目标应用
$targetApp = New-SPSecureStoreTargetApplication –Name "SSOApplication" –FriendlyName "SSO Application" –ApplicationType Group
9. 创建新的应用程序入口
$windowsUser = New-SPSecureStoreApplicationField –Name "SPAppSvcAccount" –Type WindowsUserName –Masked:$false $windowsPass = New-SPSecureStoreApplicationField –Name "password" –Type WindowsPassword –Masked:$true $appFields = $windowsUser, $windowsPass $targetApp = New-SPSecureStoreTargetApplication –Name "SSOApplication" –FriendlyName "SSO Application" –ApplicationType Group New-SPSecureStoreApplication –ServiceContext http://sp2010 –TargetApplication $targetApp –Fields $appFields