'genmackeys' utility configures keys to use for encryption and decryption of forms authentication cookie data and view state data, and for verification of out-of-process session state identification. When executed, it gives a 'validationKey', 'decryptionKey' and 'type of encryption used to validate data'. This information can then be provided in ASP.NET application's web.config file in <machinekey .. /> . While using distributed session in a webfarm, it is required so that ASP.NET session IDs are generated in same manner on all nodes.
genmackeys [option[...]]
Option | Description |
---|---|
/vklen validationKey length | Specifies the length of key used for validation of encrypted data. The key must be a minimum of 40 characters (20 bytes) and a maximum of 128 characters (64 bytes) long. Default is 20 bytes. |
/dklen decryptionKey length | Specifies the length of key used to encrypt data. The key should be 16 characters in length when using DES encryption and 48 characters in length when using Triple DES encryption. Default is 16 characters. |
/enc {SHA1|AES|MDS|3DES} | Specifies the type of encryption used for validation of data. This value can be 'SHA1', 'AES', 'MD5' or '3DES'. Default is 'SHA1'. |
/nologo | Suppresses the display of logo banner. |
/? | Displays command syntax and options for the utility. |
For more information on using machine keys, see msdn help.
The following command generates the validation key and decryption key using default lengths and default encryption type i.e. 'SHA1'.
genmackeys
The following command generates the validation key using a key length of 64 characters and a decryption key using a key length of 48 characters.
genmackeys /vklen 64 /dklen 48
The following command generates the validation key and decryption key with encryption type '3DES'.
genmackeys /enc 3DES
The following command displays the command syntax and options for the utility. Logo banner is displayed as a part.
genmackeys /?
The following command displays the command syntax and options for the utility suppressing the display of logo banner.
genmackeys /? /nologo
listcaches | addnode | removenode | startcache | stopcache | getcachecount | Keep Alive | addtestdata | clearcache | addclientnode | removeclientnode | createclientcache | removeclientcache | upgradeconfiguration | configurnodesecurity | configurcachesecurity