The
mfsecretsmscpd vault provider is an optional provider that keeps data encrypted in a file using Microsoft Windows encryption functionality.
To decrypt an encrypted file, the user must:
- Log onto the same computer where the original encryption was done, or on another machine on the network only when the user
has a roaming profile that allows decryption of data from another computer on the network
- Log on using the same credentials as were used when the file was originally encrypted
To configure the
mfsecretsmscpd vault, edit the secrets.cfg file to include values for the
provider name,
location, and optional base64-encoded
entropy.
See
Vault Providers for more information.