> Unfortunately it is user specific and I need something that will work > for > all users. >
The whole point of DPAPI is that it stores secrets, not "shared secrets" (which is a bit of a contradiction when you think about it) You can still use DPAPI in an app used by many people on the same machine - just use impersonation to impersonate an "application" user then access that user's DPAPI store. In a web app using Forms authentication, the server is already running as a single user. If you use Windows authentication OTOH, then impersonate as above when retrieving the secret. =================================== This list is hosted by DevelopMentorĀ® http://www.develop.com View archives and manage your subscription(s) at http://discuss.develop.com
