Important Notes for Encrypting Profile Keys

The private key must not be stored on the Web server, but rather on the application server. In a secure deployment, there are two firewalls between the outside user and the server storing the private key: one between the Web server (containing the public key) and the database, and another between the database and the application server (containing the private key).

In order for the Business Desk to support encryption, you must add the public key to the provider connection string in the following methods:

• sGetProviderConnStr method in the file \<Business Desk Root>\Profiles\Commonxmlroutines.asp
• RefreshProviderConnection method in the file \<Business Desk Root>\Profiles\RefreshProfileSvcAll.asp
• cnGetProviderConnection method in the file \<Business Desk Root>\Global.asa

Copyright © 2005 Microsoft Corporation.
All rights reserved.