Configure High Availability for VMware SSO using vShield Edge – Part 3

This guide assumes you have already installed the SSO servers in High Availability mode.

Once you have configured the vShield Edge load balancer, perform the steps below to complete the SSO high availability configuration. 

NOTE: We are not using certificates in this example.

  1. Stop Single Sign-On Services  on both SSO servers 

At Command Prompt execute:

  • SC stop ssoTomcat  
  • SC \\SSO2 stop ssoTomcat 

    2.Copy configuration files from SSO1 to SSO2

Copy <drive>:\Program Files\VMware\Infrastructure\SSOServer\security\server-identity.jks


\\SSO2\<drive>$\Program Files\VMware\Infrastructure\SSOServer\security

Copy <drive>:\Program Files\VMware\Infrastructure\SSOServer\webapps\sso-adminserver\WEB-INF\WEB-INF\web.xml


\\SSO2\<drive>$\Program Files\VMware\Infrastructure\SSOServer\webapps\sso-adminserver\WEB-INF\WEB-INF

3.  Save Keystore password

Open the file :\<drive>$\Program Files\VMware\Infrastructure\SSOServer\conf\server, search for line starting with <Connector SSLEnabled=”true”, on line search for parameter keystorePass and write down the password 

4. SSO2 configuration

Open a Command Prompt on SSO2

At Command Prompt execute:

  • CD <drive>:\Program Files\VMware\Infrastructure\SSOServer\utils
  • SSOCLI.cmd configure-riat -a configure-ssl –keystore-password <password saved above> –keystore-file “<drive>:\Program Files\VMware\Infrastructure\SSOServer\security\server-identity.jks” -m <SSO Administrator Password>

5. Start Single Sign-On Services

At Command Prompt execute:

 SC start ssoTomcat

2 thoughts on “Configure High Availability for VMware SSO using vShield Edge – Part 3

  1. Vaibhav

    Thank you for the article …
    I am stuck on fourth Point … when I run it — it returns an error

    C:\Program Files\VMware\Infrastructure\SSOServer\utils>SSOCLI.cmd configure-riat -a configure-ssl -keystore-password “ZvXi>g4e1[” -keystore-file “c:\Program Files\VMware\Infrastructure\SSOServer\security\server-identity.jks” <-m Comnet@123
    The system cannot find the file specified.

    Can you please assist me


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s