I just had 10.1.600.8 installed by an Epicor consultant and when I asked about doing SSO, he said I would have to create new config files and app servers. I thought that you were able to get away from that so I decided to just switch over to SSO on the current app servers. I pulled up the Epicor documentation on setting up SSO and it did not work.
Does anyone know of documentation that I could use to set it up? Or is it not possible to switch the current app servers to SSO?
Thanks. Yes, those were the instructions that I tried. I got hung up going to \inetpub\wwwroot<name_of_Epicor_appserver>. I have 3 servers and I checked the Logon and Task Agent servers and there was nothing in inetpub\wwwroot.
What do I need to do with the Admin Console? The account I am logged in as is not working. It keeps on saying the account is not set up for single sign on.
It’s just the service account that runs Epicor. Do I need to create it as a user in the system?
You must have a SSO account specified in the EAC. You can setup a user that matches your application pool account. The task agent requires a similar setup except you match the service account. If the accounts are the same, that will save you time.
Thanks for all your help. I think I have it all set now, was just wondering if you could review to make sure I did it right.
So, I followed the directions you mentioned. I added the service account that runs IIS as a user in Epicor and set it up as SSO required. The task agent already had a user created in Epicor called “print”. Everything appears to be working.
Yes - Use a domain service account for the Task Agent service and then make sure you have a user in Epicor with impersonation rights that has the domain service account listed on it (for SSO)