• Plesk Uservoice will be deprecated by October. Moving forward, all product feature requests and improvement suggestions will be managed through our new platform Plesk Productboard.
    To continue sharing your ideas and feedback, please visit features.plesk.com

Input ASP.NET Core Data Protection key store

P

Paul Hermans

Basic Pleskian
When hosting an ASP.NET Core application with Data Protection to encrypt and decrypt data, where do we store the key ring?

What are the options:
  1. Windows registry
  2. User profile (%LOCALAPPDATA%/ASP.NET/DataProtection-Keys)
  3. File system (i.e. C:\inetpub\vhosts\example.com\... )
Option 3 is the best option I think, this works with a default Plesk install, Keys will be backed up by Plesk Backup Manager and will be migrated when moving to another server etc.

But the documentation says the following:
"Use an X509 certificate to protect the key ring and ensure the certificate is a trusted certificate. If the certificate is self-signed, place the certificate in the Trusted Root store."

Where do we store this certificate? Plesk users do not have access to the Trusted Root store.

Link: Host ASP.NET Core on Windows with IIS
Link: Configure ASP.NET Core Data Protection

What do you think is the best way to protect the keys when using Plesk?
 
You must log in or register to reply here.

Similar threads

M
Resolved Plesk restore from a ZIP after server failure.
Replies
0
Views
1K
mad_inventor
M
G
Question WP installs are quarantined daily.
Replies
4
Views
2K
Bobbbb
B
L
Issue Asp.net code behind files lost in Plesk?
Replies
3
Views
5K
RodStr
R
P
Question ASP.NET Core and User Secrets in Production
Replies
1
Views
5K
dano
D
J
Issue Session expired in app ASP.NET CORE hosted in plesk.
Replies
2
Views
5K
jefffernando
J
Back
Top