locked
Best way to store an account's password RRS feed

  • Question

  • What is the best way to store a password to a given account?

    I looked into using CredRead/CredWrite (using generic credentials) but this allows me only to store a set of credentials (password and user name) under a target name. This is somehow confusing because the user can change the username using Control Panel for example. But changing the user name is not a valid operation in my scenario. (Think of an email account: The target name may be something like >mailto:user@account.tld< which implies the login name to be >user@account.tld<). This is simular to Windows Live Messenger: You cannot change the user name for a Windows Live account (trying so will bring up an error message). Is it possible to achieve this for other applications as well? What needs to be implemented to accomplish this?

    A different approach would be to store the password myself using DPAPI but I would like the passwords to be accessible for other applications in a standard way.

    Are there any other alternatives?

    Thank you in advance for any answers.

    Friday, July 16, 2010 10:21 AM