安全存储的凭据,当我需要检索使用密码 [英] Safely storing credentials when I need to retrieve the password for use
问题描述
微软是否或Windows提供了一种机制以访问一组凭据,在那里我可以不只是存储密码的腌版本;即我需要有密码本身。
Does Microsoft or Windows provide a mechanism for access to a set of credentials, where I can't just store a salted version of the password; namely I need to have the password itself.
我有一个响应,其中,如果用户进行身份验证请求,并属于一个通讯组列表Web服务,工作需要开始使用UNIX帐户在UNIX机器上。我使用的是梦幻般的 ssh.net 库远程从Web服务到linux机器,并启动所需的过程,但是到了这一点,我在配置文件中存储UNIX帐户密码,以纯文本(亚克西)
I have a webservice that responds to requests where if the user is authenticated and belongs to a distribution list, a job needs to start on a unix machine using a unix account. I'm using the fantastic ssh.net library to remote from the web service to the linux machine and start the required process but up to this point, I am storing the unix account password in the config file, in plain text (yikes)
什么是我选择这里?我想我可以加密和解密的密码,但关键也将存储在配置文件中,所以没有多大意义。
What are my options here? I was thinking I could encrypt and decrypt the password, but the key would also be stored in the config file, so there is not much point.
Windows能否有一个关键保险库,可以通过适当权限的服务帐户来访问?是否有其他方式来打击Linux的认证,这并不需要密码?
Does windows have a key vault that can be accessed by a service account with proper rights? Are there other ways to authenticate against Linux that doesn't require a password?
推荐答案
您可以加密配置您的配置文件的部分。看看这篇文章:
You can encrypt config sections of your configuration file. Check out this article:
的 http://msdn.microsoft.com/en-us/library/vstudio/zhhddkxy(v = VS.100)的.aspx
或这个
的 http://weblogs.asp.net/jongalloway/encrypting-passwords-in-a-net-app-config-file
或这个
的 http://www.codeproject.com/Articles/20398/Encrypt-and-Decrypt-ConnectionString-in-app-config
这篇关于安全存储的凭据,当我需要检索使用密码的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!