Storage encryption

This configuration is considered very advanced and should not be changed unless there is a specific need.

By default, Pointsharp ID encrypts sensitive data in the Pointsharp ID storage, such as user devices and user tokens. It is also possible to encrypt the entire user object.

To enable encryption on the whole user object, follow these steps:

  1. Open a Windows Explorer and navigate to your Pointsharp ID installation Directory.

  2. Open the bin/ directory.

  3. Right-click PSID3.xml and choose Edit.

  4. Scroll to the bottom of the file, and locate the following text: <EncryptEntireStorage>false</EncryptEntireStorage>

  5. Change this to: <EncryptEntireStorage>true</EncryptEntireStorage>

  6. Save the file and close it.

  7. Start Pointsharp ID Admin GUI.

  8. Restart the Pointsharp ID service, Ctrl+R.

Enabling this flag will force Pointsharp ID to encrypt the entire user object. In case there are users in the system which already have been stored partially encrypted, these objects will be fully encrypted the next time Pointsharp ID saves the object.