AUTHOR: Marin Bratanov
DATE POSTED: November 15, 2018
An error similar to the following is thrown, and it points to the <machineKey> section under <system.web> in your web.config:
When using <machineKey compatibilityMode="Framework45" /> or the MachineKey.Protect and MachineKey.Unprotect APIs, the 'validation' attribute must be one of these values: SHA1, HMACSHA256, HMACSHA384, HMACSHA512, or alg:[KeyedHashAlgorithm].
The error indicates that code in the application attempted to use MachineKey.Protect() or MachineKey.Unprotect() which are cryptographic operations built-in .NET 4.5. They are, however, available for modern algorighms only, and the most common cause for the error is that the machine key set on the web application (or on the server) uses an older algorithm like Tripple-DES.
Some Telerik controls use cryptographic operations that can fall back to the machine key protection and can thus cause such errors. At the time of writing, they are RadAsyncUpload, RadCloudUpload, RadEditor, RadSpell, RadImageEditor, RadScriptManager, RadStyleSheetManager.
For example, a machine key like the following will cause such an error:
There are two solutions: