PortSight Secure Access Documentation

KB-SA-0004-How to provide connection string without storing it in the web.config file



April 5, 2004


Applies to:

Secure Access 2.1 and any later version



You may not want to store connection string to the Secure Access user interface in the web.config. This article describes how to provide connection string from your own storage.



The only thing you need to do is to open the SecureAccess Web project and to modify the following line in the Global.asax.vb file, in the Application_Start method:


'set connection string for the user interface here if you don't want to store it in the web.config

ARDBConnectionStringProvider.ConnectionString = "data source=sa3perftest;initial catalog=SecureAccess;user id=sa;password=password;"


You can easily set the ARDBConnectionStringProvider.ConnectionString property to the value you obtain from your password storage.

The ARDBConnectionStringProvider is a shared (static) class. If it contains any connection string, it's used by the Secure Access data layer (ARDatabaseServices.dll library). The value is then used instead of the connection string in the web.config file.


Please note: This is not a standard solution - you should only use it in the Secure Access Web user interface or in your applications in case you decide to change the password storage.