Tuesday, July 27, 2010

Solving a "The section is marked as being protected..." Error When Decrypting a .config With aspnet_regiis.exe tool

If you use the aspnet_regiis tool to encrypt sections of a .config file then you are ahead of the game is securing sensitive information with the apps configuration. If you have not used it before, I suggest trying it out sometime. However recently I came across an error while decrypting the 'appSettings' section that was as follows:

"The section is marked as being protected, but it does not have the correct format. It should contain only the <EncryptedData> child node."

It turns out that a new key that was auto generated in this particular project dealing with WCF was injected between the <EncryptedData> nodes (as shown below).

      </CipherData>
    <add key="ClientSettingsProvider.ServiceUri" value="" />
  </EncryptedData>
Once I removed the new key and attempted the decryption, everything worked properly! So if you come across this error, see if any new keys have been added (or any other elements for that matter) between the <EncryptedData> nodes because it will cause this error.
Posted by on
Labels: ,

7 comments:

  1. AnonymousJanuary 17, 2012 at 9:57 AM

    Saved me a lot of time. Thanks!

    ReplyDelete
  2. UnknownJanuary 27, 2017 at 11:40 AM

    Awesome tip, resolved my issue perfectly

    ReplyDelete
  3. Vasavi_AruriFebruary 6, 2019 at 5:02 AM

    I am getting this error "The section is marked as being protected, but it does not have the correct format. It should contain only the child node." While Encrypting. Can I have the solution for this

    ReplyDelete
  4. Fit2PageMay 12, 2020 at 5:45 AM

    Thanks Allen that was it

    ReplyDelete
  5. UnknownJanuary 17, 2022 at 1:36 PM

    thank you so much...!!! just what i was looking for..

    ReplyDelete
  6. AnonymousJuly 27, 2022 at 7:28 PM

    worked great, thanks

    ReplyDelete
  7. AnonymousSeptember 27, 2023 at 8:59 AM

    I had the same problem. Same line added in config file.

    ReplyDelete

Subscribe to: Post Comments (Atom)