• The APS Catalog has been deprecated and removed from all Plesk Obsidian versions.
    Applications already installed from the APS Catalog will continue working. However, Plesk will no longer provide support for APS applications.
  • Please be aware: with the Plesk Obsidian 18.0.78 release, the support for the ngx_pagespeed.so module will be deprecated and removed from the sw-nginx package.

Input ASP.NET Core Data Protection key store

P

Paul Hermans

Basic Pleskian
When hosting an ASP.NET Core application with Data Protection to encrypt and decrypt data, where do we store the key ring?

What are the options:
  1. Windows registry
  2. User profile (%LOCALAPPDATA%/ASP.NET/DataProtection-Keys)
  3. File system (i.e. C:\inetpub\vhosts\example.com\... )
Option 3 is the best option I think, this works with a default Plesk install, Keys will be backed up by Plesk Backup Manager and will be migrated when moving to another server etc.

But the documentation says the following:
"Use an X509 certificate to protect the key ring and ensure the certificate is a trusted certificate. If the certificate is self-signed, place the certificate in the Trusted Root store."

Where do we store this certificate? Plesk users do not have access to the Trusted Root store.

Link: Host ASP.NET Core on Windows with IIS
Link: Configure ASP.NET Core Data Protection

What do you think is the best way to protect the keys when using Plesk?
 
You must log in or register to reply here.

Similar threads

D
Question How to figure out where a certificate is used?
Replies
0
Views
205
D3nnis3n
D
K
Resolved Send detailed error to client-side for 500 errors with ASP.NET
Replies
1
Views
10K
kelmore5
K
M
Question How to set up and actually use existing SSH Keys for Plesk Accounts
Replies
2
Views
3K
MHC_1
M
C
Issue Cloudflare Origin SSL Zertifikate does work and protect
Replies
1
Views
3K
cpulove
C
M
Resolved Plesk restore from a ZIP after server failure.
Replies
0
Views
4K
mad_inventor
M
Back
Top