Roux Visser’s SharePoint Blog

To configure Single-Sing On follow these steps:

• Create a new domain service account for running SSO service.
  
• Change SSO service’s Identity to the new service account form Services
  console.
  
• Add SSO service account as a farm administrator by using “Update farm
  administrator’s group” link from share point central admin.
  
• Right click internet explorer shortcut select “Run As” provide the credentials for the service account to run it. Open share point central admin using this IE window.
  
• Setup SSO using this IE window.
  
• Remove SSO service account from farm administrator group.
  

Common Issues:

You cannot configure single sign-on settings for a server in your server farm deployment of Microsoft Office SharePoint Portal Server 2003. You specify single sign-on settings for the server on the Manage Server Settings for Single Sign-On page of SharePoint Portal Server Central Administration. After you do this, when you click OK, you receive the following error message:

You do not have the rights to perform this operation.

To resolve this issue, make sure that the user account that you configure the Microsoft Single Sign-On Service to log on as meets the following requirements:

Note In a single-server deployment of SharePoint Portal Server 2003, if the Microsoft Single Sign-On Service runs under an account that is a member of the local Administrators group, the user account does not have to be a member of either of the following roles:

However, we recommend that you do not configure the Microsoft Single Sign-On Service to run as a member of the local Administrators group.

Note Other Issues include

• ISS Service Account Settings to be configured manually in ISS.
  

  • Bug Error resulting in the need for Microsoft Registry Hack (due to Windows Installer 3.1. being installed)