Clean my MachineKeys folder by removing multiple RSA files without touching IIS ones
I'm currently running IIS on my server using an app instantiating certificates.
By doing this code, for instance :
X509Certificate2 myX509Certificate = new
X509Certificate2(Convert.FromBase64String(byteArrayRawCertificate), passwordCertificate,
X509KeyStorageFlags.Exportable |
X509KeyStorageFlags.MachineKeySet |
X509KeyStorageFlags.PersistKeySet);
The code works fine. But I encounter a problem on my computer, on the following folder :
C:\ProgramData\Microsoft\Crypto\RSA\MachineKeys
3KB RSA files keep on being added on that folder. For now, I have more than a million files like those ones :
I would like to delete those files, but :
- IIS uses one of them for encryption of password, or perhaps for other purposes and I don't know which one,
Deleting such a large folder can take time (like days)
- Is there a simple way not to create those files again and again ? (if I don't mention "MachineKeySet" while instanciating my certificate, this won't work)
- If not, is there a way to remove the created files without deleting IIS ones ?
- Is there a way to detect which files are used by IIS ?
Thanks in advance for your help.
We ended up with this same problem.... 42 GB of machine key files. So I wrote this powershell: RemoveMachineKeys.ps1. Took a while before it actually started deleting them, but once it did the script blazed through them pretty fast. I added protection from removing IIS machine keys.
I could not use the above answers that depended upon which user created the keys, as these keys were being created in a web site and had the same created by user. I also did not want to care about the application pool name if I did not have to.
- How to solve "Could not establish trust relationship for the SSL/TLS secure channel with authority"
- HTTP Error 503. The service is unavailable. App pool stops on accessing website
- Clean my MachineKeys folder by removing multiple RSA files without touching IIS ones
- Difference between executionTimeout and Server.ScriptTimeout
- Set .NET CLR Version to No Managed Code
- HSTS and redirection IIS 10
- Troubleshooting HTTPS Issues with .NET Application on IIS Server
- How do I check if user 'IIS AppPool\MyAppPoolName' exists in powershell
- How to Disable HTTP/2 for Specific Sites in IIS Using PowerShell?
- IIS "Login failed for user 'NT AUTHORITY\ANONYMOUS LOGON'" SQL connection error, but only for 1 user
- IIS String was not recognized as a valid DateTime
- Error during GENERAL_REQUEST_ENTITY for POST request causes ASP .NET session state to never get unlocked
- MVC 6 Hosted on IIS HTTP Error 500.19
- System.Data.SqlClient.SqlException: Login failed for user
- Invalid provider type specified one more time
- IIS Manager in Windows 10
- Hosting multiple .net core using the same application pool with AspNetCoreModuleV2
- Duplicate Content Security Policies for frame ancestors generated (Blazor, IIS and Chrome)
- Error: Microsoft.Data.SqlClient is not supported on this platform when publishing .NET 8.0 C# Web API to IIS
- Blazor App on IIS does not work on recent IOS
- Is it possible to make part of a site on IIS only viewable from localhost?
- ERROR: "The project doesn't know how to run the profile IIS Express" (VS 2019, 16.11.7)
- HTTP Error 500.31 - Failed to load ASP.NET Core runtime
- Using application pool identity results in exceptions and event logs
- Serilog Not Working After New Azure Release: The type initializer for 'Microsoft.Data.SqlClient.InOutOfProcHelper' threw an exception
- How to configure Web Deploy on Windows 10 pro
- On IIS, are .NET AppDomain instance specific to an application?
- 404 - File or directory not found. getting in windows server
- "There was an error while performing this operation"
- IIS Websites requested through HTTPS keeps showing a prompt for sign in instead of loading the site