EFS File Recovery

EFS File Recovery
Secure Home | Search | About
Login Password
Register Now! Lost Password?
 Microsoft Applications Security    Post an article   get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content add this group's latest topics to your Google content
Subject Author Date
EFS File Recovery Michael D. Ober 06-14-2006
---> Re: EFS File Recovery Roger Abell [MV...06-14-2006
Posted by Michael D. Ober on June 14, 2006, 5:33 pm
If you were  Registered and logged in, you could reply and use other advanced thread options

We are just starting to use the EFS file system on XP laptops in a W2003
domain. I have encrypted a folder and created a file in the folder. The
original user can open the file. When I log in as a different user, they
cannot open the file. So far, so good. When I log in as Administrator, the
Administrator cannot open the file either. This is not good. I have
verified that the Administrator is on the file list as a recovery agent.

All accounts are domain accounts and the certificate server is a domain
enterprise CA.

Help,
Thanks,
Mike Ober.




Posted by Roger Abell [MVP] on June 14, 2006, 9:00 pm
If you were  Registered and logged in, you could reply and use other advanced thread options
If the DRA cert/key is not present on the machine (as it should not be!!)
then the DRA is not able to access an EFS protected file for which it
is the DRA.

>
> We are just starting to use the EFS file system on XP laptops in a W2003
> domain. I have encrypted a folder and created a file in the folder. The
> original user can open the file. When I log in as a different user, they
> cannot open the file. So far, so good. When I log in as Administrator,
> the
> Administrator cannot open the file either. This is not good. I have
> verified that the Administrator is on the file list as a recovery agent.
>
> All accounts are domain accounts and the certificate server is a domain
> enterprise CA.
>
> Help,
> Thanks,
> Mike Ober.
>
>
>



Posted by Michael D. Ober on June 15, 2006, 9:41 am
If you were  Registered and logged in, you could reply and use other advanced thread options

Thanks - I hadn't thought of that.

Mike.

>
> If the DRA cert/key is not present on the machine (as it should not be!!)
> then the DRA is not able to access an EFS protected file for which it
> is the DRA.
>
> >
> > We are just starting to use the EFS file system on XP laptops in a W2003
> > domain. I have encrypted a folder and created a file in the folder.
The
> > original user can open the file. When I log in as a different user,
they
> > cannot open the file. So far, so good. When I log in as Administrator,
> > the
> > Administrator cannot open the file either. This is not good. I have
> > verified that the Administrator is on the file list as a recovery agent.
> >
> > All accounts are domain accounts and the certificate server is a domain
> > enterprise CA.
> >
> > Help,
> > Thanks,
> > Mike Ober.
> >
> >
> >
>
>
>




Similar ThreadsPosted
decrypting email in pst file with efs data recovery certificate??? October 21, 2007, 9:11 pm
Recovery policy contains invalid recovery cert July 28, 2006, 12:59 pm
portably encrypting a file system's partition, directory and/or file November 25, 2005, 3:30 pm
Recovery For XP Suggestions February 24, 2006, 4:13 pm
Key recovery from archiving June 19, 2006, 3:08 am
hosts file references to another "master" host file November 21, 2006, 5:34 pm
EFS files without recovery agent September 12, 2006, 10:42 am
RE: EFS files without recovery agent September 14, 2006, 5:08 am
problem with EFS Recovery agent December 10, 2007, 4:03 pm
Re: Microsoft Says Recovery from Malware Becoming Impossible April 21, 2006, 9:20 am

The site map in XML format XML site map

Contact Us | Privacy Policy