The ssocli command needs to be executed on the same server which was used for the deployment.
Ensure that the resource group otp-security-ds-rg group is online on the first host of the cluster.
Log in as root (su - root) to the provisioning server.
Type the following command to add Web SSO user.
/opt/SUNWotp/cli/ssocli add -u ssousername -f oldpasswordfile -c clusterhostset -r role -i
ssousername is the Web SSO user name.
oldpasswordfile is the file that contains the old or initial password on the first line.
clusterhostset is the cluster host set.
role is the role of the Web SSO user. You need to manuallycreate a role before assigning it to the Web SSO user.
If there is no user role, do not specify any value for role.
For example
/opt/SUNWotp/cli/ssocli add -u ssouser -f /tmp/pass -c cl-sso -r manager -i