How to Encrypt Web config in asp.net mvc

1.      Create RSA key container (Development machine).

a.       Run CMD as Administrator

b.       Go To C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319

c.       aspnet_regiis -pc "InternetBanking" –exp

2.      Export the RSA key container (Development machine).

a.       aspnet_regiis -px " InternetBanking" "E:\keys.xml" –pri

3.      Prepare the web.config file for encryption (Development machine).

a.        Add the following code to the web.config file as a child of the <configuration> node

  <configProtectedData>

    <providers>

      <add name="Neorithm" type="System.Configuration.RsaProtectedConfigurationProvider,&#xD;&#xA;          System.Configuration, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b03f5f7f11d50a3a,&#xD;&#xA;          processorArchitecture=MSIL"

      keyContainerName="InternetBanking"

      useMachineContainer="true"/>

    </providers>

  </configProtectedData>

4.       Encrypt the web.config file (Development machine).

a.       For connectionStrings

                                                               i.      aspnet_regiis -pef "connectionStrings" "E:\Publish\5 Oct 2016\API" -prov "Neorithm"

b.       For appSettings

                                                               i.      aspnet_regiis -pef " appSettings " "E:\Publish\5 Oct 2016\API" -prov "Neorithm"

The following steps will be performed on each machine where your web-app will be deployed.

5.      Import the RSA Key container into the machine. (Deployment machine)

Copy the “keys.xml” file to the machine where the app needs to run. Run the following command to import the keys:

aspnet_regiis -pi " InternetBanking " " E:\keys.xml" –exp

To Decrypt Web.Config

C:\Windows\Microsoft.NET\Framework\v4.0.30319>aspnet_regiis -pdf "appSettings" "E:\Model\EBS"

To Encrypt –

C:\Windows\Microsoft.NET\Framework\v4.0.30319>aspnet_regiis -pef "appSettings" "E:\Model\EBS" -prov "Neorithm"