In my opinion, one of SharePoint 2010/2013’s unsung heroes is the Secure Store Service Application. I’m sure the vast majority of SharePoint users have never even heard of it. It’s one of those quiet, unassuming service applications that only a farm administrator can love. It is, however, potentially so much more than the place to hold your Excel and PowerPivot unattended account. In this blog, I hope to show you how you can use the Secure Store Service in a new and powerful way.
So What is This Secure Store Service?
The Secure Store Service Application (SSS) was added in SharePoint 2010 as a replacement for 2007’s Single Sign On feature. Its role in life is to map a SharePoint user (domain account) to a different account, such as a legacy system login. It stores the encrypted user information securely inside a farm database, and the service application provides a simple means to manage the accounts (called “credentials”). The administrator creates something called a Target Application. It defines the user configuration (including who has access to use it) and stores the remote user name and password.