Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Can you set the MachineKey programmatically?

Tags:

asp.net

web-config

In ASP.NET can you set the machineKey settings programmatically?

The web app that we use stores sensitive info encrypted in a database, so if we could put the decryptionKey there it would be handy.

like image 224
Mr. Flibble Avatar asked Sep 20 '12 14:09

Mr. Flibble

People also ask

How do I set up MachineKey?

If you have access to the IIS management console for the server where Orchard is installed, it is the easiest way to set-up a machine key. Uncheck "Automatically generate at runtime" for both the validation key and the decryption key. Click "Generate Keys" under "Actions" on the right side of the panel. Click "Apply".

What is MachineKey validationKey?

"validationKey specifies a manually assigned validation key. This value must be manually set to ensure consistent configuration across a network of Web servers (a Web farm). The key must be a minimum of 40 characters (20 bytes) and a maximum of 128 characters (64 bytes) long.

What is MachineKey?

Defines the configuration settings that control the key generation and algorithms that are used in encryption, decryption, and message authentication code (MAC) operations in Windows Forms authentication, view-state validation, and session-state application isolation.

2 Answers

No; the machineKey element must be set via config. However, web.config can itself be encrypted, which helps minimize risk of cryptographic key disclosure if an attacker ever gets access to the config file. (This same process can be used to protect SQL connection strings and pretty much any other sensitive config element you wish.) See http://msdn.microsoft.com/en-us/library/dtkwfdky(v=VS.100).aspx for a walkthrough on enabling this.

like image 84
Levi Avatar answered Nov 13 '22 12:11

Levi

Yes, you can. I got success using this code in ConsoleApplication:

private static void ChangeWebConfig(string validationKey, string decryptionKey, string webConfigPath)
{
    ExeConfigurationFileMap configFileMap = new ExeConfigurationFileMap();
    configFileMap.ExeConfigFilename = webConfigPath;
    System.Configuration.Configuration config = ConfigurationManager.OpenMappedExeConfiguration(configFileMap, ConfigurationUserLevel.None);
    MachineKeySection section = (MachineKeySection)config.GetSection("system.web/machineKey");
    section.ValidationKey = validationKey;
    section.DecryptionKey = decryptionKey;
    config.Save();
}
like image 45
Julian Corrêa Avatar answered Nov 13 '22 10:11

Julian Corrêa
Sign in to Comment

Related questions

Streaming Live Audio and Video on internet using asp.net
Some changes on Soundex Algorithm
What is the best way to read an attribute from an xml string in c#
ASP.NET MVC 3 Custom Authentication/Authorization
Get username in WCF service using basic auth with IIS
C#: Anything wrong with setting HttpContext.Current in a parallel thread?
UIWebview does not work like Native iPhone Browser when interacting with ASPX page
How to ping a webservice like svc, asmx
How to run telerik RadWindow from code behind
SQL Parameters and Question Marks
Log the Bandwidth usage and request time in ASP.NET 4.0
How do I prevent Resharper's error in solution window from showing CSS/javascript errors?
Migrate from DataSets to EntityFramework
How to get user local time at Page_Load
Web.config transformation with SlowCheetah and ASP.NET Web site project
Do I need web.config for non-ASCII characters?
How to register HttpContextBase with Autofac in Asp.Net (not MVC)
Localization for "the value {0} is invalid" in case of int overflow
Is it possible to spoof or reuse VIEWSTATE or detect if it is protected from modification?
IIS 7 How to map a client certificate with a user account in a database?

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!