P
PK9
Hi, I'm using the dpapi to encrypt and decrypt data that is passed between
computers on a domain. The system has a presentation tier server (domain
controller), web services tier server and a database server. I am encrypting
data from the presentation tier which is sent to the web services tier via
soap headers. The soap header data is then decrypted on the web services
tier, or at least that's what I'm trying to do... This all works fine on the
development machine where all three tiers are on one computer. I am trying
to deploy this on the test servers am getting the following error:
"Exception Decrypting. Decryption Failed. Key not valid for use in
specified state." The dataprotecter class of the
Microsoft.applicationBlocks.data is throwing this exception. I am using
Store.Machine. I have learned from research that the data is encrypted based
on the computer GUID so I'm sure the seed will be different between the two
servers. I also have delegation turned on in active directory between the
domain controller and the other domain controller. Is there anything else I
am missing to be able to share the key between computers on a domain? Any
help is appreciated.
Thanks!
computers on a domain. The system has a presentation tier server (domain
controller), web services tier server and a database server. I am encrypting
data from the presentation tier which is sent to the web services tier via
soap headers. The soap header data is then decrypted on the web services
tier, or at least that's what I'm trying to do... This all works fine on the
development machine where all three tiers are on one computer. I am trying
to deploy this on the test servers am getting the following error:
"Exception Decrypting. Decryption Failed. Key not valid for use in
specified state." The dataprotecter class of the
Microsoft.applicationBlocks.data is throwing this exception. I am using
Store.Machine. I have learned from research that the data is encrypted based
on the computer GUID so I'm sure the seed will be different between the two
servers. I also have delegation turned on in active directory between the
domain controller and the other domain controller. Is there anything else I
am missing to be able to share the key between computers on a domain? Any
help is appreciated.
Thanks!