You are using Business Connectivity Services to design a SharePoint 2010 application that connects to an
external database. The database users have accounts for authentication that are different from their Active
Directory accounts. You have a requirement to allow users to connect to the external database without prompting
the user for credentials. You need to store user credentials and use these credentials when connecting to the
external database. Which approach should you recommend?
A.
Create a target application that uses the Microsoft Single Sign-On Service. Select the Connect with
Impersonated Custom Identity option when creating the connection to the database.
B.
Create a target application that uses the Secure Store Service. Select the Connect with Impersonated Custom
Identity option when creating the connection to the database.
C.
Create a target application that uses the Single Sign-On Service. Select the Connect with User�s Identity option
when creating the connection to the database.
D.
Create a target application that uses the Secure Store Service. Select the Connect with User�s Identity option
when creating the connection to the database.
http://msdn.microsoft.com/en-us/library/ee556780%28v=office.14%29.aspx
http://blogs.msdn.com/b/sridhara/archive/2010/01/27/setting-up-bcs-with-secure-store-application-impersonation.aspx
In SharePoint 2010, Microsoft has replaced the SSO with SSS.
Secure Store Service is for delegating SharePoint to authentication to external resources. For example you can configure SSS to save users password for their Windows Live account and anytime they access Windows Live via SharePoint, it auto logs in.