I need to encrypt some values in a configuration file for a .NET Framework Windows Service that runs as SYSTEM and was wondering if I can use the DPAPI for that. Is the SYSTEM authority able to have "user" private key or does it have to use the local machine's encryption keys? And shortcomings on doing that? Any suggestions?
Thanks!
