• Dear Pleskians! The Plesk Forum will be undergoing scheduled maintenance on Monday, 7th of July, at 9:00 AM UTC. The expected maintenance window is 2 hours.
    Thank you in advance for your patience and understanding on the matter.

Input ASP.NET Core Data Protection key store

P

Paul Hermans

Basic Pleskian
When hosting an ASP.NET Core application with Data Protection to encrypt and decrypt data, where do we store the key ring?

What are the options:
  1. Windows registry
  2. User profile (%LOCALAPPDATA%/ASP.NET/DataProtection-Keys)
  3. File system (i.e. C:\inetpub\vhosts\example.com\... )
Option 3 is the best option I think, this works with a default Plesk install, Keys will be backed up by Plesk Backup Manager and will be migrated when moving to another server etc.

But the documentation says the following:
"Use an X509 certificate to protect the key ring and ensure the certificate is a trusted certificate. If the certificate is self-signed, place the certificate in the Trusted Root store."

Where do we store this certificate? Plesk users do not have access to the Trusted Root store.

Link: Host ASP.NET Core on Windows with IIS
Link: Configure ASP.NET Core Data Protection

What do you think is the best way to protect the keys when using Plesk?
 
You must log in or register to reply here.

Similar threads

M
Resolved Plesk restore from a ZIP after server failure.
Replies
0
Views
1K
mad_inventor
M
G
Question WP installs are quarantined daily.
Replies
4
Views
2K
Bobbbb
B
L
Issue Asp.net code behind files lost in Plesk?
Replies
3
Views
5K
RodStr
R
Ehud
Question Is Plesk Email SRS fully configured, or it requires an extension?
Replies
0
Views
3K
Ehud
Ehud
W
Issue Error code 1: Can't detect .NET version when requesting Let's Encrypt cert
Replies
4
Views
3K
wst
W
Back
Top