Secure user name and Password in Web Config

M

maa

I want to be able to securely encrypt a user name and password for a web app.
The user name/password is to be used in for authorization to a web service
not a db. For security reasons the company wants to encrypt what is in the
web config file and be able to move the web app to different machines without
having to re-encrypt it.
Is this possible?
Is there a security hole in this procedure that might be better handled by a
call to a web service app holding the user name and password?
Thanks,
Marc
 
D

Dominick Baier

have a look at the protected configuration feature in .NET (and the aspnet_regiis
tool)
 

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

Remote SSH and Configuring code help 0
Problem with a login script, SESSION user rights and put this together so it works with the other pages and MySQL. Code examples. 2
Secure downloadable PDF files 2
Web Config problem 3
Web Config Tool - Specified cast is not valid 0
How to pass user name and password to Apache server. 1
Getting a AD user name ... 2
Setting up secure custom Web Controls 6

Members online

Total: 33 (members: 2, guests: 31)
Robots: 505

Forum statistics

Threads
473,769
Messages
2,569,579
Members
45,053
Latest member
BrodieSola

Latest Threads

Top