• Inviting everyone who uses WordPress management tools in Plesk
    The Plesk team is conducting a 60-minute research session that includes an interview and a moderated usability test.
    To participate, please use this link .
    Your experience will help shape product decisions and ensure the tools better support real-world use cases.

Input ASP.NET Core Data Protection key store

P

Paul Hermans

Basic Pleskian
When hosting an ASP.NET Core application with Data Protection to encrypt and decrypt data, where do we store the key ring?

What are the options:
  1. Windows registry
  2. User profile (%LOCALAPPDATA%/ASP.NET/DataProtection-Keys)
  3. File system (i.e. C:\inetpub\vhosts\example.com\... )
Option 3 is the best option I think, this works with a default Plesk install, Keys will be backed up by Plesk Backup Manager and will be migrated when moving to another server etc.

But the documentation says the following:
"Use an X509 certificate to protect the key ring and ensure the certificate is a trusted certificate. If the certificate is self-signed, place the certificate in the Trusted Root store."

Where do we store this certificate? Plesk users do not have access to the Trusted Root store.

Link: Host ASP.NET Core on Windows with IIS
Link: Configure ASP.NET Core Data Protection

What do you think is the best way to protect the keys when using Plesk?
 
You must log in or register to reply here.

Similar threads

K
Resolved Send detailed error to client-side for 500 errors with ASP.NET
Replies
1
Views
10K
kelmore5
K
M
Question How to set up and actually use existing SSH Keys for Plesk Accounts
Replies
2
Views
3K
MHC_1
M
C
Issue Cloudflare Origin SSL Zertifikate does work and protect
Replies
1
Views
3K
cpulove
C
M
Resolved Plesk restore from a ZIP after server failure.
Replies
0
Views
4K
mad_inventor
M
M
Resolved Daily log rotation fails: "A table must have a primary key" on statisticsMeasurement, but plesk repair db finds no errors.
Replies
7
Views
2K
Sebahat.hadzhi
Sebahat.hadzhi
Back
Top