Reputation:
Encrypting config files for deployment .NET
I have a windows service that reads from app.config
I want some settings to be encrypted, however, I don't want to use the ProtectedConfigurationProvider classes provided in .NET because they encrypt files based on the machine they are running on using DPAPI.
What I wanted was a way for our administrator to deploy the config file already encrypted to many machines and have each machine decrypt them when needed.
I don't want to hardcode a password into the assembly either so I'm not sure how I can go about this.
Upvotes: 0
Views: 5459
Answers (2)
Reputation: 18746
You can use user-level RSA keys and export them to each machine. then the config file can be encrypted ahead of time, and the target machines already have the key.
Upvotes: 0
Reputation: 131192
Perhaps your central server can maintains a database of the private keys for all the end points, then it could use the specific machine key for that.
A shared private key for all the machines is not going to be that secure.
Upvotes: 2
Related Questions
- Encrypting app.config File
- "Static" Encryption of an application configuration file in C#
- Encrypting App.config / Web.config file
- Deployment of encrypted app.config
- Encrypting App.config file when app is installed in Program Files
- Can we encrypt the entire config file?
- Encrypt part of appConfig configSection c#
- Encrypting config files info
- Encrypting config files for deployment
- Distributing applications where the configuration settings are encrypted using Entrerprise library