1. First, add following to web.config within the container
---------------------BEGIN: configProtectedData ---------------------
---------------------END: configProtectedData ---------------------
2. Below is an example .bat or .cmd file for encrypting sensitive sections of the web.config for a given .NET web application. Change the {PATH} to the physical path to the web application's folder.
---------------------BEGIN: encrypt.cmd ---------------------A complete walkthrough for this, including information on key stores is available here:
@echo offREM *********************************************************
REM ** APP_PATH
REM ** Change {PATH} below to path of physical location where
REM ** application is installed
REM **
REM ** ASP_PATH
REM ** Location of ASP.NET framework
REM *********************************************************
SET APP_PATH="{PATH}"
SET ASP_PATH=C:WINDOWSMicrosoft.NETFrameworkv2.0.50727aspnet_regiis.exe
SET ASP_OPT=-pef
SET ASP_PROV="MY_PROVIDER"%ASP_PATH% %ASP_OPT% "connectionStrings"
%APP_PATH% -prov %ASP_PROV%
pause
---------------------END: encrypt.cmd ---------------------
http://msdn.microsoft.com/en-us/library/2w117ede.aspx