473,399 Members | 3,832 Online
Bytes | Software Development & Data Engineering Community
Post Job

Home Posts Topics Members FAQ

home > topics > .net framework > questions > encrypting passwords in config files

Join Bytes to post your question to a community of 473,399 software developers and data experts.

Encrypting passwords in config files

Hello all. I have written a .Net .dll that edits properties in Active
Directory. I have to specify an Admin username and password in my LDAP
connection string when I bind to the Active Directory. I'm concerned about
hard coding an Admin password in my code or reading it from a config file for
obvious reasons. My first thought is to use encryption and hard code the
encrypted password in the .dll itself. Anyone know how to do this or anyone
have a better solution?
Nov 22 '05 #1
3 1585
There's a step by step process on how to achieve this at
http://support.microsoft.com/default.aspx?scid=329290

- Shuvro

"CLEAR-RCIC" <CL*******@discussions.microsoft.com> wrote in message
news:14**********************************@microsof t.com...
Hello all. I have written a .Net .dll that edits properties in Active
Directory. I have to specify an Admin username and password in my LDAP
connection string when I bind to the Active Directory. I'm concerned about hard coding an Admin password in my code or reading it from a config file for obvious reasons. My first thought is to use encryption and hard code the
encrypted password in the .dll itself. Anyone know how to do this or anyone have a better solution?

Nov 22 '05 #2
After reading your post more carefully, I noticed that you want to encode
atbitrary data with your DLL. In an application we use in-house, the
solution was to use a DLL to encrypt data in the registry (under HKLM or
HKCR depending on the scenario). You can add the keys to the registry using
the same DLL during install after prompting the user for the Admin
user/password values.

Hope this helps
Shuvro

"CLEAR-RCIC" <CL*******@discussions.microsoft.com> wrote in message
news:14**********************************@microsof t.com...
Hello all. I have written a .Net .dll that edits properties in Active
Directory. I have to specify an Admin username and password in my LDAP
connection string when I bind to the Active Directory. I'm concerned about hard coding an Admin password in my code or reading it from a config file for obvious reasons. My first thought is to use encryption and hard code the
encrypted password in the .dll itself. Anyone know how to do this or anyone have a better solution?

Nov 22 '05 #3
Hi,

There have been a lot of discussions on similar topics in the newsgroups.
Consider searching the groups.

One method that might be useful is by using DPAPI
http://msdn.microsoft.com/library/de...SecNetHT08.asp

HTH,
Rakesh Rajan

"CLEAR-RCIC" wrote:
Hello all. I have written a .Net .dll that edits properties in Active
Directory. I have to specify an Admin username and password in my LDAP
connection string when I bind to the Active Directory. I'm concerned about
hard coding an Admin password in my code or reading it from a config file for
obvious reasons. My first thought is to use encryption and hard code the
encrypted password in the .dll itself. Anyone know how to do this or anyone
have a better solution?

Nov 22 '05 #4
New Post

This thread has been closed and replies have been disabled. Please start a new discussion.

Similar topics

14
Encrypting PHP Code
by: David Williams | last post by:
Hello all. Anyone know of a free program I can use to encrypt my php code? I would like it to be secure as possible. i.e. not viewable from the web. Also, is there an html encryptor or will...
PHP
3
Encrypting passwords in config files
by: CLEAR-RCIC | last post by:
Hello all. I have written a .Net .dll that edits properties in Active Directory. I have to specify an Admin username and password in my LDAP connection string when I bind to the Active Directory....
.NET Framework
3
Passwords in web.config... is this secure?
by: John Buchmann | last post by:
In my web.config, I have a section that has a name and password: <credentials passwordFormat="Clear"> <user name="aaa" password="bbb" /> </credentials> Is this secure? What is to stop...
ASP.NET
19
Encrypting Passwords
by: Cord-Heinrich Pahlmann | last post by:
Hi, I have written a tool wich de/encrypts a few of my forum and bloggin-Passwords. My question is how secure it is. The following describes how I have encrypted my passwords. When I log in,...
PHP
0
How to turn on java script in a villaon keypad mobile phone
by: Charles Arthur | last post by:
How do i turn on java script on a villaon, callus and itel keypad mobile phone
Java
1
Looking to do Android software development, any suggestions? Is flutter better?
by: nemocccc | last post by:
hello, everyone, I want to develop a software for my android phone for daily needs, any suggestions?
General
0
How to build RAID in BIOS?
by: Hystou | last post by:
There are some requirements for setting up RAID: 1. The motherboard and BIOS support RAID configuration. 2. The motherboard has 2 or more available SATA protocol SSD/HDD slots (including MSATA, M.2...
Computer Hardware
0
marktang
What is ONU?
by: marktang | last post by:
ONU (Optical Network Unit) is one of the key components for providing high-speed Internet services. Its primary function is to act as an endpoint device located at the user's premises. However,...
General
0
Changing the language in Windows 10
by: Hystou | last post by:
Most computers default to English, but sometimes we require a different language, especially when relocating. Forgot to request a specific language before your computer shipped? No problem! You can...
Windows Server
0
Oralloy
Problem With Comparison Operator <=> in G++
by: Oralloy | last post by:
Hello folks, I am unable to find appropriate documentation on the type promotion of bit-fields when using the generalised comparison operator "<=>". The problem is that using the GNU compilers,...
C / C++
0
tracyyun
Discussion: How does Zigbee compare with other wireless protocols in smart home applications?
by: tracyyun | last post by:
Dear forum friends, With the development of smart home technology, a variety of wireless communication protocols have appeared on the market, such as Zigbee, Z-Wave, Wi-Fi, Bluetooth, etc. Each...
General
0
agi2029
AI Job Threat for Devs
by: agi2029 | last post by:
Let's talk about the concept of autonomous AI software engineers and no-code agents. These AIs are designed to manage the entire lifecycle of a software development project—planning, coding, testing,...
Career Advice
0
isladogs
Access Europe - Using VBA to create a class based on a table - Wed 1 May
by: isladogs | last post by:
The next Access Europe User Group meeting will be on Wednesday 1 May 2024 starting at 18:00 UK time (6PM UTC+1) and finishing by 19:30 (7.30PM). In this session, we are pleased to welcome a new...
Microsoft Access / VBA

By using Bytes.com and it's services, you agree to our Privacy Policy and Terms of Use.

To disable or enable advertisements and analytics tracking please visit the manage ads & tracking page.

BYTES.COM © 2024
About Bytes
Terms Of Use
Privacy Policy
Sitemap
Advertise on Bytes:
Post a Job
Sponsored Posts
Platinum & Gold Sponsors
Hire Now!