BizTalk Server 2020 – 20 days, 20 posts: BizTalk Server SSO Application Configuration Tool for BizTalk Server 2020

BizTalk Server 2020 – 20 days, 20 posts: BizTalk Server SSO Application Configuration Tool for BizTalk Server 2020

BizTalk Server 2020 – 20 days, 20 posts – day 2. And for today I have chosen to migrate another crucial and productivity tool: BizTalk Server SSO to be compatible with BizTalk Server 2020. Application Configuration Tool. Some of you had already asked me if I would release a new version of this tool for this new version of the product. Well, here it is!

BizTalk Server SSO Application Configuration Tool 

BizTalk Server SSO Application Configuration tool provides the ability to add and manage applications, add and manage key-value pairs in the SSO database, as well as import and export configuration applications so that they can be deployed to different environments.

BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013 R2
  • Fully compatible with BizTalk Server 2020
  • Fully resizable windows (you will understand if you are a BizTalk Developer);
  • You can securely export and import Application configurations and it is compatible with MSFT SSO snap-in;
  • You can duplicate Applications (copy and paste);
  • You can rename Applications;
  • You can easily add new key-values without the need to always perform a right-click and select a new key option;
  • You can easily add edit key-values without the need to always perform a double-click to open a new window;
  • You can refresh the Applications tree view
  • You can search!

Other versions

This tool is also available for the following BizTalk Server versions:

Download

THIS TOOL IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND.

You can download BizTalk Server SSO Application Configuration Tool from:
BizTalk Server SSO Application Configuration ToolBizTalk Server SSO Application Configuration Tool
GitHub

or from :

You can download BizTalk Server SSO Application Configuration Tool for BizTalk Server 2020 from:
BizTalk Server SSO Application Configuration Tool for BizTalk Server 2020
(45 KB)
Microsoft | TechNet Gallery

The post BizTalk Server 2020 – 20 days, 20 posts: BizTalk Server SSO Application Configuration Tool for BizTalk Server 2020 appeared first on SANDRO PEREIRA BIZTALK BLOG.

How to configure and use my SSO Application Configuration tool

How to configure and use my SSO Application Configuration tool

Many people are having doubts and reaching to me to provide some explanations on how to configure the SSO Application Configuration that I recently published and, consequently, they are facing some problems/issue on using the tool. So, I decided to write this post to properly document this tool and explain how you can easily start using it.

Where can I use this SSO Application Configuration tool?

The first thing that you need to be aware is that I release 3 different versions of this tool:

And the reason behind that is that each different version of BizTalk Server uses a particular version of Microsoft.EnterpriseSingleSignOn.Interop.dll – BizTalk Server 2016 will use 10.0.1000.0 version. So, each version of the tool will only work properly for that specific BizTalk Server version.

If you want to use the tool for example in BizTalk Server 2010, then you need to use Assembly Binding Redirection in the machine configuration file (Machine.config):

  • 32-bit: c:WindowsMicrosoft.NETFramework[version]configmachine.config
  • 64-bit: c:WindowsMicrosoft.NETFramework64[version]configmachine.config

Check for more information here.

What do I need to do to start using SSO Application Configuration tool?

When you download the SSO Application Configuration tool, by default it will not work in your environment because it has my personal configurations for my LAB machine.

To properly use this tool, you need to first configure your environment settings by:

  • Execute the SSO Application Configuration tool;
  • And then select the “Settings” option from the top menu option;
  • This will pop up the “SSO Application Configuration Setting” windows and there you need to configure:
    • AppAdminAcct: SSO Administrator Group – Administrators of the Enterprise Single Sign-On (SSO) service.
      • This is used to define the counts that have access to use this tool
    • ContactInfo: Internal field that is normally in the format of an email that is used internally in SSO tables for Application Configurations.
    • AppUserAcct: SSO Affiliate Administrators Group – Administrators of certain SSO affiliate applications.
      • This is used to describe the accounts that can access the configurations

SSO Application Configuration: Settings

The “AppAdminAcct” and “AppUserAcct” fields are easy to understand, they need to be the BizTalk Groups that you have created in your environment. Nevertheless, with this tool is not mandatory that the “AppUserAcct” has to be “SSO Affiliate Administrators Group”, you can for example change that for “BizTalk Application Users”.

However, the “ContactInfo” may raise some doubts. To demystify this value here are the rules for its definition:

  • If you don’t have any application configuration created in your environment: this field can be any value, that normally is defined in kind of “email format”, for example, “BizTalkAdmin@Sandro Pereira.com”.
  • If you already have application configuration created in your environment: created by other SSO Application or by MSFT SSO Application Configuration snap-in then you need to use the value that is already defined in your system.

I already have application configuration created in my environment, so, how can I properly configure the “ContactInfo” property?

The SSO Application Configuration tool is fully compatible with MSFT SSO Application Configuration snap-in. But to additional clarify this field, let me explain how MSFT snap-in works:

  • When you install the MSFT SSO Application configuration snap-in, during the installation process it will ask you for a company name, I set mine as “Sandro Pereira”.
  • Once you open the MSFT SSO Application configuration snap-in you will see that the tool will use it the company name that you defined in the installation process + “SSO Application Configuration” in the Application tree root

SSO Application Configuration: Rootname

  • Also, “behind doors” all the application that you create will use “BizTalkAdmin@” + company name + “.com” as the contact info, mine is “BizTalkAdmin@Sandro Pereira.com”.
    • You can validate this value in the BizTalk SSO Database in the table “SSOX_ApplicationInfo” using the following SQL query:
USE [SSODB]

GO

SELECT DISTINCT [ai_contact_info]
FROM [SSODB].[dbo].[SSOX_ApplicationInfo]
    • The result you get will be something like this:

SSO Application Configuration: SSODB ContactInfo values

      • someone@companyname.com and someone@microsoft.com are internally used by BizTalk (at least the last one) – please do not use that value or change these values.

So, to put my tool compatible with MSFT tool you need to go to “Settings” and property the contact info with that specific value, again in my case: “BizTalkAdmin@Sandro Pereira.com”.

Note: Additional you have and use different contact info values to be used in different context/teams and for them to have only access to a subset of all your Application Configurations. This is something that MSFT tool will not allow you to do.

Author: Sandro Pereira

Sandro Pereira lives in Portugal and works as a consultant at DevScope. In the past years, he has been working on implementing Integration scenarios both on-premises and cloud for various clients, each with different scenarios from a technical point of view, size, and criticality, using Microsoft Azure, Microsoft BizTalk Server and different technologies like AS2, EDI, RosettaNet, SAP, TIBCO etc. He is a regular blogger, international speaker, and technical reviewer of several BizTalk books all focused on Integration. He is also the author of the book “BizTalk Mapping Patterns & Best Practices”. He has been awarded MVP since 2011 for his contributions to the integration community. View all posts by Sandro Pereira

BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013

BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013

A few days ago, my team and I decided to release a new SSO Application Configuration tool for BizTalk Server 2016 to eliminate the needs and streamline the administrative processes of our customers. Because many customers are still using previous versions of BizTalk Server, mainly BizTalk Server 2013 or 2013 R2. We decide to publish also SSO Application Configuration tool fully compatible with BizTalk Server 2013 R2 (it is the same tool but compiled specifically for BizTalk Server 2013 R2).

Finally, to finish this SSO Application Configuration tool for BizTalk Server trilogy, we decided to publish the fully compatible version of this tool for BizTalk Server 2013 (again, it is the same tool but compiled specifically for BizTalk Server 2013) that will provide the ability to easily add and manage configuration applications, add and manage key-value pairs in the SSO database, as well as securely import and export configuration applications so that they can be deployed to different environments, and it is fully compatible with MSFT SSO Application Configuration snap-in:

  • Fully compatible with BizTalk Server 2013
  • Fully resizable windows (you will understand if you are a BizTalk Developer);
  • You can securely export and import Application configurations and it is compatible with MSFT SSO snap-in;
  • You can duplicate Applications (copy and paste);
  • You can rename Applications;
  • You can easily add new key-values without the need to always perform a right click and select new key option;
  • You can easily add edit key-values without the need to always perform a double-click to open a new window;
  • You can refresh the Applications tree view
  • You can search!

BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013

THIS TOOL IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND.

You can download BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013 from:
BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013 (45 KB)
Microsoft | TechNet Gallery

Author: Sandro Pereira

Sandro Pereira lives in Portugal and works as a consultant at DevScope. In the past years, he has been working on implementing Integration scenarios both on-premises and cloud for various clients, each with different scenarios from a technical point of view, size, and criticality, using Microsoft Azure, Microsoft BizTalk Server and different technologies like AS2, EDI, RosettaNet, SAP, TIBCO etc. He is a regular blogger, international speaker, and technical reviewer of several BizTalk books all focused on Integration. He is also the author of the book “BizTalk Mapping Patterns & Best Practices”. He has been awarded MVP since 2011 for his contributions to the integration community. View all posts by Sandro Pereira

BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013 R2

BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013 R2

I just moved the family to our new home, we are thrilled and happy for this new chapter of our lives… and while the girls are trying to sleep and get used to the new home I got a free time to write.

A few days ago, me and my team released a new SSO Application Configuration tool for BizTalk Server 2016 that will provide the ability to easily add and manage configuration applications, add and manage key-value pairs in the SSO database, as well as securely import and export configuration applications so that they can be deployed to different environments, and it is fully compatible with MSFT SSO Application Configuration snap-in.

BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013 R2

However, many customers are still using BizTalk Server 2013 R2, or even older versions, so today I update and compile my new tool to be able to work also with BizTalk Server 2013 R2:

  • Fully compatible with BizTalk Server 2013 R2
  • Fully resizable windows (you will understand if you are a BizTalk Developer);
  • You can securely export and import Application configurations and it is compatible with MSFT SSO snap-in;
  • You can duplicate Applications (copy and paste);
  • You can rename Applications;
  • You can easily add new key-values without the need to always perform a right click and select new key option;
  • You can easily add edit key-values without the need to always perform a double-click to open a new window;
  • You can refresh the Applications tree view
  • You can search!

THIS TOOL IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND.

I will in the future make available for other versions

You can download BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013 R2 from:
BizTalk Server SSO Application Configuration Tool for BizTalk Server 2013 R2
(45 KB)
Microsoft | TechNet Gallery

Author: Sandro Pereira

Sandro Pereira lives in Portugal and works as a consultant at DevScope. In the past years, he has been working on implementing Integration scenarios both on-premises and cloud for various clients, each with different scenarios from a technical point of view, size, and criticality, using Microsoft Azure, Microsoft BizTalk Server and different technologies like AS2, EDI, RosettaNet, SAP, TIBCO etc. He is a regular blogger, international speaker, and technical reviewer of several BizTalk books all focused on Integration. He is also the author of the book “BizTalk Mapping Patterns & Best Practices”. He has been awarded MVP since 2011 for his contributions to the integration community. View all posts by Sandro Pereira

The birth of a new SSO Application Configuration Tool for BizTalk Server 2016

The birth of a new SSO Application Configuration Tool for BizTalk Server 2016

Happy to announce the birth of a new SSO Application Configuration tool that will provide the ability to easily add and manage configuration applications, add and manage key-value pairs in the SSO database, as well as securely import and export configuration applications so that they can be deployed to different environments.

SSO Application Configuration Tool for BizTalk Server 2016

BizTalk Server leverages the Enterprise Single Sign-On (SSO) capabilities for securely storing critical information such as secure configuration properties (for example, the proxy user ID, and proxy password) for the BizTalk adapters. Therefore, BizTalk Server requires SSO to work properly. BizTalk Server automatically installs SSO on every computer where you install the BizTalk Server runtime.

But it also can keep your own application configuration data in SSO database, let say the usual configurations that we normally keep in a configuration file (“app.config”)). If you’ve been in the BizTalk world long enough, you’ve probably faced this challenge or need and until 2009 there wasn’t an easy way to archive that and Richard Seroter’s BizTalk SSO Configuration Data Storage Tool was the go tool to store and manage Single Sign-On (SSO) applications – this is still a valid tool and if you rebuild the code in the last version of BizTalk Server it still works perfectly.

In mid-2009 Microsoft released an MMC snap-in to tackle this exact issue: SSO Configuration Application MMC Snap-In provides the ability to add and manage applications, add and manage key-value pairs in the SSO database, as well as import and export configuration applications so that they can be deployed to different environments. It wasn’t nor is it the perfect tool in my opinion since it as several UI limitations but it worked perfectly until… a new version of BizTalk Server was released.

Unfortunately, this tool will not work properly at least from BizTalk Server 2013 forward. At first sight, it seems that everything is working properly but when you try to create a key-value pair you will see that nothing happens and no key is created.

At the time I published a hotfix for the tool:

And M.R.Ashwin Prabhu published the same hotfix for BizTalk Server 2016: BizTalk Server 2016: Fix for SSO Configuration Application MMC Snap-In.

In part, these hotfixes solved the issue but I recently realized that the tool even with the hotfix doesn’t work properly in multiple environments and to try to uninstall the Microsoft snap-in after the hotfix is “installed” it is a nightmare.

Again, Richard Seroter tool is a great tool but is not fully compatible with Microsoft tool and in some parts, I liked that tool. So me and my team decided to “recreate” and improve SSO Application Configuration and the result is this:

  • Fully resizable windows (you will understand if you are a BizTalk Developer);
  • You can securely export and import Application configurations and it is compatible with MSFT SSO snap-in;
  • You can duplicate Applications (copy and past);
  • You can rename Applications;
  • You can easily add new key-values without the need to always perform a right click and select new key option;
  • You can easily add edit key-values without the need to always perform a double-click to open a new window;
  • You can refresh the Applications tree view
  • You can configure you system settings

SSO Application Configuration Tool for BizTalk Server 2016: Settings

  • You can search!

THIS TOOL IS PROVIDED “AS IS”, WITHOUT WARRANTY OF ANY KIND.

You can download BizTalk Server SSO Application Configuration Tool for BizTalk Server 2016 from:
BizTalk Server SSO Application Configuration Tool for BizTalk Server 2016 (45 KB)
Microsoft | TechNet Gallery

Author: Sandro Pereira

Sandro Pereira lives in Portugal and works as a consultant at DevScope. In the past years, he has been working on implementing Integration scenarios both on-premises and cloud for various clients, each with different scenarios from a technical point of view, size, and criticality, using Microsoft Azure, Microsoft BizTalk Server and different technologies like AS2, EDI, RosettaNet, SAP, TIBCO etc. He is a regular blogger, international speaker, and technical reviewer of several BizTalk books all focused on Integration. He is also the author of the book “BizTalk Mapping Patterns & Best Practices”. He has been awarded MVP since 2011 for his contributions to the integration community. View all posts by Sandro Pereira