5) Service Configuration Utility

(Version 3.6.1+)

The Service Configuration Utility packaged with Pleasant Password Server, allows administrators to configure various service components, which include:

Starting the Utility

This utility requires Administrative privileges to run, and is accessible after installation / upgrade through:

Backup your Connection String

(SQLite Databases)

Before making any modifications, backup your connection string: so that you can recover access to your database if something goes wrong. This contains the database connection parameters & the encryption key.

WARNING: Please take great care when using this utility.

  • The default SQLite database is protected using the very secure AES-256 encryption algorithm.
  • The encryption key is stored in the connection string and stored in a protected and encrypted registry key
  • This key is accessible via the Service Configuration Utility

It is not recoverable if lost or deleted. Without the encryption key you cannot access your database.

Related topic: Database Backup and Restore

Note: If the encryption key for your SQLite database is lost or changed, there will be no way to recover data!

Database Configuration

The Service Configuration Utility supports changing the connection string and database provider.

The default provider is SQLite, but can be changed to either MS SQL or PostgreSQL.

If you prefer to use an alternative database provider, you must enter a valid connection string for that type. If you do not know the correct connection string format for your database type, you may be able to find it here:

Once the Connection String field is set and the appropriate provider selected from the Database Provider drop down menu, click Save Changes to write these settings to the registry.

Port Configuration 

The Service Configuration Utility enables changing the port (default: 10001) that Password Server uses for the web service and any client applications.

Please note: Using a reserved port like 80 or 443 requires additional steps when hosting with IIS Express. See below.

Client software will by default use this port, even if the users do not specify it in their connection to the server.

The Web client from your browsers can also resolve without a port number, by using these methods:

To change the port:

  1. Make sure nothing else is using the port you want to switch to. You can double-check with this tool:

    • Open a Command Prompt (run as administrator), then run netstat -b -p TCP -q from the prompt. Verify that the port you want does not appear in the Local Address column.

  2. Type the port you want into the Port Number field, click Set Port.

  3. If this is a standard port, perform those steps (listed below).

  4. then restart the Password Server service.

Using a Reserved Port: like 80 or 443, requires additional steps when hosting with IIS Express. Hosting with IIS does not require these steps. ( Reference: https://docs.microsoft.com/en-us/iis/extensions/using-iis-express/handling-url-binding-failures-in-iis-express#using-a-reserved-port )



  1. Stop the Pleasant Password service

  2. Run cmd.exe (as administrator), run the command:

    • netsh http add urlacl url=https://YOURSERVERNAME:443/ user=everyone

  3. Open the PleasantPasswordManagerHost.config file, add the line to the binding section of the PleasantPasswordServer site:

    • <binding protocol="https" bindingInformation="*:443:YOURSERVERNAME" />

  4. Start the service.

Certificate Configuration

The Service Configuration Utility allows for custom SSL certificates to be imported and used by Password Server.

To import an SSL certificate, click Import Certificate and enter the password that was set to protect the private key of your certificate.

Click Clear to revert to the default placeholder certificate (Note: this will not delete anything).

To delete a certificate (optional), use the MMC Certificates snap-in (Computer account, Personal store).