Re: Restoring EFS and Passwords
- From: "Roger Abell [MVP]" <mvpNoSpam@xxxxxxx>
- Date: Thu, 19 Jul 2007 09:14:39 -0700
<jwgoerlich@xxxxxxxxx> wrote in message
That's the ticket! I restored the user's profile and system state,
then had the user change their password. The EFS-encrypted files were
then accessible. I owe you one, Roger.
Thank you very much,
I am glad it worked. I am also not too sure as to why
the profile no longer had the old cert/key available in
an accessible way once the password was reset to the
prior value however.
On Jul 13, 6:16 pm, "Roger Abell [MVP]" <mvpNoS...@xxxxxxx> wrote:
That they could not gain access after the restore (did you
restore their profile and system state and the encrypted files
or just system state and the encrypted files ?) at first seemed
surprising to me.
When you restored system state it reverted their account
to their old password, but DPAPI would still be set to
use the new password as their profile had been touched
after the password was forgotten and reset. So perhaps
restoring their profile is needed so that they can get at
the stored key via the (system state) restored account pwd.
At least that is my thinking. Including restore of the
EFS encrypted files was a good idea as they may have
been altered in the attempts but probably not.
<jwgoerl...@xxxxxxxxx> wrote in message
I am working with a single Windows Server 2003 computer. It is not
part of an Active Directory domain. EFS is enabled and a couple users
are encrypting their files. Full backups with system state are
performed regularly using the default Windows Backup utility.
About a week ago, a user forgot their password. The administrator
reset it and, thus, locked them out of their EFS encrypted files. All
attempts by the user and the administrator to open the files results
in the "Access is denied" dialog box.
My job is to find a way for the user to open them. I did restore
system state and the encrypted files from a backup made a couple weeks
before. The user, whose memory has returned, logged in with their last
password. They still cannot decrypt the files, however.
What do I need to restore in order to for this user to decrypt their
J Wolfgang Goerlich- Hide quoted text -
- Show quoted text -
- Prev by Date: Re: Log in and log off times from Windows XP
- Next by Date: Re: File encryption problem
- Previous by thread: Re: Restoring EFS and Passwords
- Next by thread: Re: Restoring EFS and Passwords