How to Encrypt web.config

This is to give you information about how to encrypt or then decrypt web.config particular section i.e. appSettings and connectionstrings. The reason to encrypt important web.config section(s) is the production environment.


Following are the examples for encryption and decryption of web.config:-

Encryption of the section:

 Before encryption:

<runtime>
    <assemblyBinding xmlns="urn:schemas-microsoft-com:asm.v1" appliesTo="v2.0.50727">
      <dependentAssembly>
        <assemblyIdentity name="System.Web.Extensions" publicKeyToken="31bf3856ad364e35" />
        <bindingRedirect oldVersion="1.0.0.0-1.1.0.0" newVersion="3.5.0.0" />
      </dependentAssembly>
      <dependentAssembly>
        <assemblyIdentity name="System.Web.Extensions.Design" publicKeyToken="31bf3856ad364e35" />
        <bindingRedirect oldVersion="1.0.0.0-1.1.0.0" newVersion="3.5.0.0" />
      </dependentAssembly>
    </assemblyBinding>
  </runtime>
  <appSettings>
    <add key="TD_PWD" value="12345678" />
  </appSettings>

  <applicationSettings>

After encryption:

Following are the steps to encrypt:


  • Open Command Prompt with Administrator privileges
  • Navigate to .Net Framework folder
    cd C:\Windows\Microsoft.NET\Framework\v2.0.50727
  • Then run following command:
    ASPNET_REGIIS -pef "[sectionName]" "[Physical path for web.config folder]"


Encrypted web.config section:-

<appSettings configProtectionProvider="RsaProtectedConfigurationProvider">
    <EncryptedData Type="http://www.w3.org/2001/04/xmlenc#Element"
      xmlns="http://www.w3.org/2001/04/xmlenc#">
      <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#tripledes-cbc" />
      <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
        <EncryptedKey xmlns="http://www.w3.org/2001/04/xmlenc#">
          <EncryptionMethod Algorithm="http://www.w3.org/2001/04/xmlenc#rsa-1_5" />
          <KeyInfo xmlns="http://www.w3.org/2000/09/xmldsig#">
            <KeyName>Rsa Key</KeyName>
          </KeyInfo>
          <CipherData>
            <CipherValue>WbZBZdCuC/DQd98196IxGrXDEsN5eirF+Qde3v/xY2cmoVL3gZYLcrB+gglFwr1AvUTeoiCrPkvGBtUAFyilZh49HUEr/BxOWKjkad5QeRylROuXdOhh7PYXp+dEIorAl5lGUltt4vW5PnPjOfrwcV0P/bO5zrx/W7EO8f+ijAg=</CipherValue>
          </CipherData>
        </EncryptedKey>
      </KeyInfo>
      <CipherData>
        <CipherValue>3rOiujjxUaIJundGcv5pvRdLnXQUfLJw/qsLkqpgJld1r/XGi2DpeJpUM3fDP5dKRx9x/f7HMZDIl4X/JGlQG42EimMTetuZJOpjrn47xITr1Dh31WeqCBehbb97QLN1xIOJm4/sRL3PB+5l9MqOrwFCkYoBsZHsWajyMzD5s9KpIRR2lHNUy0+8+WQ6le6pl5Swbxj/8yrfkvXpVehU6OmosJ5tXs1S1EE7GeCoFEI6Hnt62PcrHZ4iFe+U8R+RrR3gFUBbSm4qsuXJR/JwdKQHMqKZpm+MQ2QdebGBnUgOH0F9MQeUVM+gBhkHBrDeIqivkuUmztA9rKgNS0LOy2m6frBkNnYoHQsPQF++e7kVMt2LrT302XQXwrvhwOQ3oJi9Zp1MuQkeb2Iob+++DXSR1xDX8lSq7VgTRvwwcHpmKZ22rzf7iEruzw577I2MLWYInVyQYxO0vfBvKR9y+Q==</CipherValue>
      </CipherData>
    </EncryptedData>
  </appSettings>

  <applicationSettings>


Decryption of the section:

Yes, it is possible to decrypt web.config, following is command to decrypt web.config section:

ASPNET_REGIIS -pdf "[sectionName]" "[Physical path for web.config folder]"






Comments

Post a Comment

Popular posts from this blog

How to remove app from SharePoint 2013/2016

I have installed an SharePoint App for creating surveys but when try to uninstall / remove it from the site it shows exception message " sorry we couldn't remove the app ". Solution: I have used following Power-Shell commands to install/remove app successfully  $instances = Get-SPAppInstance -Web <URL> $instance = $instances | where {$_.Title -eq '<app_title>'}   Uninstall-SPAppInstance -Identity $instance
Read more

SQL SERVER – FIX : Error 3154: The backup set holds a backup of a database other than the existing database

ERROR: TITLE: Microsoft SQL Server Management Studio ------------------------------ Restore failed for Server 'DBSERVER'.  (Microsoft.SqlServer.Smo) For help, click: http://go.microsoft.com/fwlink?ProdName=Microsoft+SQL+Server&ProdVer=9.00.1399.00& EvtSrc=Microsoft.SqlServer.Management.Smo.ExceptionTemplates.FailedOperationExceptionText&EvtID=Restore+Server&LinkId=20476 An exception occurred while executing a Transact-SQL statement or batch. (Microsoft.SqlServer.ConnectionInfo) The backup set holds a backup of a database other than the existing 'DB' database. RESTORE DATABASE is terminating abnormally. (Microsoft SQL Server, Error: 3154) For help, click: http://go.microsoft.com/fwlink?ProdName=Microsoft+SQL+Server&ProdVer=09.00.1399&EvtSrc=MSSQLServer&EvtID=3154&LinkId=20476 SOLUTION Create a database and then try this command: RESTORE DATABASE  AdventureWorks FROM DISK = 'C:\ BackupAdventureworks ...
Read more

The model backing the context has changed since the database was created. Consider using Code First Migrations to update the database

One way to resolve this error is to use Code First Migrations to update the database schema to match the new model. To do this, you can use the following steps: Open the Package Manager Console in Visual Studio by going to Tools -> NuGet Package Manager -> Package Manager Console. In the Package Manager Console, run the command Enable-Migrations to enable migrations in the project. Run the command Add-Migration <migration-name> to create a new migration for the changes you made to the model. Run the command Update-Database to apply the changes to the database.
Read more