Re: Access denied - Encrypted Files

From: Karl Levinson [x y] mvp (levinson_k@despammed.com)
Date: 02/17/03 

From: "Karl Levinson [x y] mvp" <levinson_k@despammed.com>
Date: Mon, 17 Feb 2003 08:48:43 -0500

"Wombat" <no.spam@wanted.here> wrote in message
news:O0uj#qn1CHA.1656@TK2MSFTNGP09...

> You created the certificate on the server _after_ the crash? If so, my
> suspicions tell me that the files are gone forever.

I agree. That's the usual consensus. You HAVE to back up your encryption
keys before a crash happens, or the files are gone forever. I think this is
documented in the Windows 2000 help file.

There are a few exceptions [such as if the computer was joined to a Windows
2000 domain, and this wasn't your only domain controller that crashed].

Some other exceptions that you might think about are listed at the link
below. If you have any luck with any of them, let us know. So far no one
has reported any success using these methods.

http://securityadmin.info/faq.htm#efs

PS EFS encryption is very easy for an attacker with physical access to your
computer to defeat unless the computer is in a windows 2000 domain or you
take other steps like changing the syskey boot method. Details on this and
on how to back up your encryption keys are above. 

---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.449 / Virus Database: 251 - Release Date: 1/27/2003