Reputation: 1574
The encrypted store is not available | AWSSDK C
I'm getting the following exception using AWSSDK v 3.5.1.58:
The encrypted store is not available. This may be due to use of a non-Windows operating system or Windows Nano Server, or the current user account may not have its profile loaded.
This is due to the application unable to use crypt32.dll. Now this is strange since the file is in System32 running on Server 2019 and IIS 10. There's no real documentation around this. I'm using ADFS auth. FederatedAWSCredentials
This works fine on local dev, but not once deployed.
The file generating the error can be found here: https://github.com/aws/aws-sdk-net/blob/133eddb00a3fbd2ab395e01c3d84ac9fe1ff38b2/sdk/src/Core/Amazon.Util/Internal/SettingsManager.cs on line 213
Upvotes: 1
Views: 547
Answers (2)
Reputation: 1574
So the issue was in IIS.
I was running the Application Pool as the user that needs to be authenticated, which is correct. But you also need to set the following:
Application Pool -> Advanced Settings -> Process Model -> Load User Profile = True
Upvotes: 1
Related Questions
- AWS DotNet SDK Error: Unable to get IAM security credentials from EC2 Instance Metadata Service
- AWS .NET SDK throws "An existing connection was forcibly closed by the remote host" when trying to get secret from AWS Secrets Manager
- AWSSDK.Core requires AWS_ENABLE_ENDPOINT_DISCOVERY environment variable value
- Can not find credentials in AWS .NET SDK
- AWS: unable to find credentials error
- c# BasicAWSCredentials object does not have SecureString parameter for SecretKey
- encryptionsdk.exception.BadCiphertextException: Invalid ciphertext type
- Can't find class StoredProfileAWSCredentials using AWS SDK v3 for C#
- AWS SDK CryptProtectData failed
- Amazon S3 C# SDK "The underlying connection was closed: Could not establish trust relationship for the SSL/TLS secure channel." Error