Multiple IIS Sites - Seperate Credential vault

PorreKaj · December 3, 2021, 9:38am

Hi,

My dashboards run on a single host, in seperate IIS sites. The idea is that sites are seperated, so different teams can run their own dashboards, in an effort to limit what a person can mess up or look into.

It just occured to me, that Secret Variables saved in one dashboard, can be imported into another with no effort. which of course is a bit of a booboo.

What options are there, to store credentials in my use case.
We have a Password manager with API access, but even then, I don’t see any way to store tokens securely.

adam · December 3, 2021, 4:06pm

Do you have a single PSU instance with multiple dashboards or multiple PSU instances with one dashboard?

The secret management on windows uses Credential Manager so if you change the user account of the App Pool the sites won’t have access to the same secrets.

Topic		Replies	Views
Discussion: Safest Way For powershell remoting from UD Universal Dashboard Help	6	1270	September 2, 2019
Best way to use secure credentials in a dashboard Universal Dashboard Help	4	1259	January 17, 2020
IIS Permissions/accounts etc - advice needed Universal Dashboard Help	2	584	February 4, 2020
Hosting in IIS (PSU version 1.5.3) - problem with Windows Auth etc Universal Dashboard	0	421	December 9, 2020
Handling Secrets During Development Universal Dashboard Help	4	779	April 29, 2020

Multiple IIS Sites - Seperate Credential vault

Related Topics