Paul Hermans
Basic Pleskian
When hosting an ASP.NET Core application with Data Protection to encrypt and decrypt data, where do we store the key ring?
What are the options:
But the documentation says the following:
"Use an X509 certificate to protect the key ring and ensure the certificate is a trusted certificate. If the certificate is self-signed, place the certificate in the Trusted Root store."
Where do we store this certificate? Plesk users do not have access to the Trusted Root store.
Link: Host ASP.NET Core on Windows with IIS
Link: Configure ASP.NET Core Data Protection
What do you think is the best way to protect the keys when using Plesk?
What are the options:
- Windows registry
- User profile (%LOCALAPPDATA%/ASP.NET/DataProtection-Keys)
- File system (i.e. C:\inetpub\vhosts\example.com\... )
But the documentation says the following:
"Use an X509 certificate to protect the key ring and ensure the certificate is a trusted certificate. If the certificate is self-signed, place the certificate in the Trusted Root store."
Where do we store this certificate? Plesk users do not have access to the Trusted Root store.
Link: Host ASP.NET Core on Windows with IIS
Link: Configure ASP.NET Core Data Protection
What do you think is the best way to protect the keys when using Plesk?