WCF configuration file configuration using ACL

Question

WCF configuration file configuration using ACL

in this MSDN article on the WCF configuration scheme contains a warning:

You must protect the WCF configuration sections in the application configuration files (app.config) with the appropriate access control lists (ACLs) to prevent any potential security risks. For example, you should make sure that only the right people can access or change security settings when binding applications or the service model section of the configuration file for the service.

And this is exactly what I need for my WCF services, but I can not find much information on how to achieve this type of protection.

Can someone please give me some examples of how to protect sections of the WCF configuration file using access control lists (ACLs) or tell me more information about this topic?

Thanks in advance.

+4

c # wcf app-config wcf-binding wcf-security

Diogo rocha Apr 24 '16 at 13:55

source share

1 answer

aershov · Accepted Answer · 2016-04-24T15:33:57+0000

This quote may relate to encryption of WCF configuration sections (but not the entire system.ServiceModel partition group) and ACL management in the key container.

MSDN + Some blog posts + fooobar.com/questions/1059099 / ...

, IIS, IIS. RsaProtectedConfigurationProvider, Key name, .

ACL - Windows . , app.config. ACL. - ACL.

, :

" " ( "" ).
icacls tool
PowerShell
Active Directory,

WCF configuration file configuration using ACL

More articles: