Basically, the procedure is very simple.
First, open IIS manager and find the web site you want to encrypt. Got it? Great, when you’re there, look at the site ID, write it somewhere.
Then, run command prompt ( as administrator ) and position yourself in the :
In case your application is running in .NET 2, position yourself in the V2.0.xxxx folder.
Type in the following command:
aspnet_regiis -pe “connectionStrings” ” -site “IDnumber”
What will this command do?
It will encrypt the connection string part of the web.config file, so it cannot be read in some text editor; ofcourse, your web server will still be able to read the connection string from the file, dont worry 🙂
BUT WHAT IF I HAVE A VIRTUAL DIRECTOY, AND I WANT TO ENCRYPT THAT web.config FILE?
No problem at all, just use this command:
aspnet_regiis -pe “connectionStrings” -app “/YOURVIRTUALFOLDER” -site “IDnumber”
Notice that I added a “-app “/YOURVIRTUALFOLDER” part to the command.
Thats all for today 😀 Stay smart and bright! 😀 Bye bye!