You
must have Diocesan Admin permissions to view this page.You
must have Diocesan Admin permissions to view this page.
The features on the Encryption and Decryption page enable you to encrypt (or decrypt) the contents of two sections of the web.config file:
● appSettings
● connectionStrings
Encryption of these sections is recommended because they contain highly sensitive data.
You can use encryption to protect sensitive data in these sections of the web.config file::
● appSettings: used to store connection strings, server names, file paths, and other settings that enable the application to perform.
● connectionStrings: used to store information needed by the provider to initiate a connection to your database or data files. The connection string may include the name of the server and database as well as security information, such as the username and password. If anyone needs to obtain the database information of your application, the first place he or she will look is in the web.config file.
● 
: automatically encrypts the information in the section.
Encryption provides more security because the contents are changed into
a format that is readable.
● 
: decrypts the information in the section. Decryption
offers no security because the contents are in their original format,
which makes them easily readable. If you need to see what the particular
value is for a setting, you can decrypt the section.
How to Encrypt or Decrypt Sections of the web.config File