Currently I am using Windows Server 2012 R2 Standard and the IIS version 6.2. The machine keys on IIS is currently set as SHA1 as Validation method and Auto as Encryption method. The <machinekey> tag present in Web.config file also consists of validation key, decryption key, validation=SHA1 and decryption=3DES.
I have to change this encryption method and have to use AES method.
Please let me know the required changes to use this method.
What I have tried:
When I changed the validation and encryption methods on IIS(machine keys) to AES and set the <machinekey> tag as validation=AES and decryption=AES(web.config) then I am not even able to login to my application.
But when I set decryption=3DES, then I am able to login to my application. I don't know if this right or not.
According to me, decryption must also be AES but its not working. Please let me know what I am doing wrong or what is the correct way to set this encryption method