Migrating SSO Database from SQL 2005 to SQL2008

Posted on by Jordansphere

I wanted to move the SSO database from the local vCenter server to a dedicated SQL 2008 server.

 

1) Obtain the password the RSA_DBA and RSA_user in the current using the following commands. 

> cd C:\Program Files\VMware\Infrastructure\SSOServer\utils
> ssocli manage-secrets -a listallkeys
[Enter Master password: ********]

The output will show the passwords:

Secrets stored in C:\PROGRA~1\VMware\INFRAS~1\SSOSER~1\webapps\ims\WEB-INF\classes\systemfields.properties.
com.rsa.db.dba = RSA_DBA
com.rsa.db.dba.password = [PASSWORD]
com.rsa.db.user = RSA_user
com.rsa.db.user.password = [PASSWORD]
</snip>

Note: We only need the password for RSA_User as RSA_DBA is solely required for the installation of SSO.

2) Now we have the passwords we'll need to create the database with relevant details on the new server. Log into Management Studio on the new server and select Databases -> New Database

 

sso_upgrade1

Give the database a name.

sso_upgrade2

 

3) Stop the SSO service

sso_upgrade4

 

4) Backup the SSO Database, copy it to the new DB host then perform a restore. 

 

5) Create RSA_User on the new DB using Management Studio and give relevant permissions

sso_upgrade3

 

6) The next step is to reconfiugre SSO to point to the new DB server. Esnure you are in still in the following directory :  C:\Program Files\VMware\Infrastructure\SSOServer\utils 


 

Syntax:

ssocli configure-riat -a configure-db –database-host {new_host_name} –database-port {[SQL port]} –rsa-user {RSA_USER} –rsa-user-password  -m master_password

Example:

All I needed to change was the DB host as all the other values were not changing:

ssocli configure-riat -a configure-db –database-host dbhost.jordansphere.co.uk -m My_Master_Password

 

7) Edit jndi.properties in C:\Program Files\VMware\Infrastructure\SSOServer\webapps\ims\web-inf\classes\  by opening notepad or equivalent. We just need to change or check the following values:

com.rsa.db.instance=RSA   (This is the new DB we just created in step 2)
com.rsa.db.hostname=dhost.jordansphere.co.uk

 

9) Edit config.properties in C:\Program Files\VMware\Infrastructure\SSOServer\webapps\lookupservice\WEB-INF\classes\ using notepad or equivalent. We have kept the same username / password so the only value we need to change is the db.host

db.host=dbhost.jordansphere.co.uk

 

9) Start the SSO service