ASP.NET machineKey Generator

This is an application that will generate a valid machineKey block with random, secure, hard-coded keys that you can paste inside the <system.web> in your web.config or machine.config file.

Hard-coded encryption and validation keys are needed if you have a web farm/web garden, if you use passwordFormat=Encrypted with ASP.NET 2.0’s Membership provider, or if you have certain ViewState issues. I discuss those reasons more in-depth in my blog posts about “Invalid Viewstate” errors and the ASP.NET Membership Encrypted passwordFormat, or you can also read my machineKey CodeProject article for more background information.

Below is a random set of keys, generated by this page. Go ahead and refresh this page to get a new set of keys.

ASP.NET 1.1 machineKey

<machineKey validationKey="814AB73F6FCE6ED4EDD4D594DB91C1C10C9368205EA2170CB4A50F7F0AF7D19E5925D8D7B27C42C0F90AEA683CE645A16DB39A5A99BE5E2CD505E68FCF1661A0"
 decryptionKey="66E9DD4A4E854A4DCFF83A9AB58DED83FF1D42EB5FF09A53"
 validation="SHA1" />

ASP.NET 2.0 machineKey

<machineKey validationKey="BC42B418F5928EA3F995D2A8DD0F58BFD9DC6F8E19948D120350DB107E96699A0CBE1A6F395EA8CF0FA906B311E477F3E9F891079C3ED874B94F1EF032B44106"
 decryptionKey="D0F5EFB9F5F4C2FD9D3DE6556C642D33D13F5622E14E5A9FBAA922292C0CEBDC"
 validation="SHA1" decryption="AES" />

If you want, you can also use the code below so you can generate the keys yourself:

using System;
using System.Text;
using System.Security;
using System.Security.Cryptography;

private void Button1_Click(object sender, System.EventArgs e)
{
	txtASPNET20.Text = getASPNET20machinekey();
	txtASPNET11.Text = getASPNET11machinekey();
}

public string getASPNET20machinekey()
{
	StringBuilder aspnet20machinekey = new StringBuilder();
	string key64byte = getRandomKey(64);
	string key32byte = getRandomKey(32);
	aspnet20machinekey.Append("\n");
	return aspnet20machinekey.ToString();
}

public string getASPNET11machinekey()
{
	StringBuilder aspnet11machinekey = new StringBuilder();
	string key64byte = getRandomKey(64);
	string key24byte = getRandomKey(24);

	aspnet11machinekey.Append("\n");
	return aspnet11machinekey.ToString();
}

public string getRandomKey(int bytelength)
{
	int len = bytelength * 2;
	byte[] buff = new byte[len / 2];
	RNGCryptoServiceProvider rng = new RNGCryptoServiceProvider();
	rng.GetBytes(buff);
	StringBuilder sb = new StringBuilder(len);
	for (int i = 0; i < buff.Length; i++)
		sb.Append(string.Format("{0:X2}", buff[i]));
	return sb.ToString();
}