support Posted May 5, 2011 Share Posted May 5, 2011 Whilst it's not entirely necessary to encrypt the database connection strings within the web.config file, it is recommended so the SQL Account credentials used to access the Passwordstate database is encrypted and unreadable from anyone who can read the file system on your web server. To encrypt the database connections string, please follow these instructions: Encrypt Connection String Open a command prompt and change to the v4.0.30319 .Net Framework folder (normally found under C:\Windows\Microsoft.NET\Framework\v4.0.30319) Type the following: aspnet_regiis.exe -pef "connectionStrings" "c:\inetpub\passwordstate" (change the path if you've installed Passwordstate to a different location) Decrypt Connection String Open a command prompt and change to the v4.0.30319 .Net Framework folder folder (normally found under C:\Windows\Microsoft.NET\Framework\v4.0.30319) Type the following: aspnet_regiis.exe -pdf "connectionStrings" "c:\inetpub\passwordstate" (change the path if you've installed Passwordstate to a different location) Regards Click Studios Link to comment Share on other sites More sharing options...
abj Posted May 7, 2015 Share Posted May 7, 2015 Just a note, if you are running the PasswordState service under a different account, you have to explicitly give it permissions to read the encryption keys, if you encrypt the database connection string, by using this command: aspnet_regiis -pa "NetFrameworkConfigurationKey" "Domain\Username of service account" Link to comment Share on other sites More sharing options...
support Posted May 8, 2015 Author Share Posted May 8, 2015 Hi abj, Thanks for mentioning this - we weren't aware of it. In version 7 there is no need to run the Windows Service under the identity of an account any more - just thought we would mention it in case you weren't aware. Regards Click Studios Link to comment Share on other sites More sharing options...
Peter_ Posted October 2, 2018 Share Posted October 2, 2018 Don't work for me (Dr. Google could't help me either) Error Message is "Illegal characters in path" C:\Windows\Microsoft.NET\Framework64\v4.0.30319>aspnet_regiis.exe -pef "connectionStrings" "c:\inetpub\Passwordstate\" Microsoft (R) ASP.NET RegIIS, Version 4.0.30319.0 Das Verwaltungsprogramm zum Installieren und Deinstallieren von ASP.NET auf dem lokalen Computer. Copyright (C) Microsoft Corporation. Alle Rechte vorbehalten. Der Konfigurationsabschnitt wird verschlüsselt... Illegales Zeichen im Pfad. Fehler Link to comment Share on other sites More sharing options...
support Posted October 2, 2018 Author Share Posted October 2, 2018 Hello, When a google translate part of the message, it says "The configuration section is encrypted". Can you tell me if you've opened the web.config file, and it still is not encrypted? Thanks Click Studios Link to comment Share on other sites More sharing options...
Peter_ Posted October 2, 2018 Share Posted October 2, 2018 Its says like: Quote The configuration section is being encrypted... Illegal characters in path Error No the config is not encrypted. Link to comment Share on other sites More sharing options...
support Posted October 2, 2018 Author Share Posted October 2, 2018 Thanks for confirming Peter, and I'm not sure why you are seeing this. Could you contact us via our support page, and email us a copy of your web.config file, and we will try encrypting it ourselves? Thanks Click Studios Link to comment Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now