Environment
Fortify Software Security Center (SSC)
Situation
Users using SSO authentication cannot login to SSC after the account that Tomcat runs as is changed due to database issues.
Cause
SSC instance is reinitialized because the account changed which results in the related configuration getting refreshed and the secret.key file under \.fortify\ssc\conf being regenerated, thus, data used for SSO authentication containing encrypted entries is unable to be read since it relies on the original secret.key file from the original account.