This article details which cipher is used by Active Roles and its components.
Below you'll find a detailed description of the cypher being used by Active Roles and its components:
1) Database: Advanced Encryption Standard (AES) is used while establishing a secure connection between the ARS service and the SQL server database.
2) Web Interface (WI): Advanced Encryption Standard (AES), specified in the machineKey tag in the web.config file is used for encryption and decryption of form authentication tickets in the WI.
3) MMC console: To store user account passwords and managed domain credentials, for example in the user account creation dialog and other password stores, Advanced Encryption Standard (AES) is used.
4) Management Shell: The secure string (password) used while connecting to Admin Service internally uses Microsoft DPAPI, which in turn uses the Triple DES (3DES) algorithm for encryption and decryption. It replicates the native Microsoft PowerShell behaviour and is governed by the Microsoft API.