Re: EFS

• Previous message: What's in a Name?: "Re: Netcraft Toolbar"
• In reply to: Roland Hübner: "RE: EFS"
• Next in thread: Pat Hoffer [MSFT]: "RE: EFS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 8 Jun 2005 22:08:54 -0500

I am not quite sure what you are trying to accomplish but to export an EFS
certificate and private key the user that "owns" that certificate/private
key needs to logon to the computer where the EFS certificate/private key
lives and then use mmc snapin for "certificates" - my user account and then
go to the personal\certificates folder. I don't know what you are trying to
do with Certificate Manager" then "Active Directory User Opject?? If you go
to a user account in Active Directory Users and Computers you can see the
certificates that are mapped in AD to a users account but that is the
"public key" only. You must export from the computer where the certificate
and the private key are shown via mmc snapin for my user account. ---
Steve

"Roland Hübner" <RolandHbner@discussions.microsoft.com> wrote in message
news:86145DEF-A4A9-4498-BDA0-4BC1D32650E8@microsoft.com...
> Hallo,
> I have installated on my Windows 2000 Server a "Enterprice root CA".
> I open the mmc on a Workstation with the Certificate Snap-In. I select
> "Certificate Manager" then "Active Directoy User Opject". Now, appears my
> Certificate of efs.
> If I want to export this certificate then I cannot to select the private
> Key.
> Under "Certificate Manager" "Personal" isn`t a certificate. I can create
> under "Personal" my own certificate of efs, I open the "Internet explorer"
> and my address of Root CA, for excample: http://servername/certsrv. I
> create
> a certificate of efs with a "private Key" that can I export. Problem: If I
> create a File on the Server und encryption this file, then will encrytion
> this file with Certifivate under "Active Directory User Opject.
> Why? Can I configure the CA, that takes my own Certificate?
> Or, Can I of Administrator to create a Certificate with a "private key" of
> export and this is available on the Domäne? Or I must delete the
> EFS-Template?
> Thank you!
>
> "Roland Hübner" schrieb:
>
>> Hallo,
>> I have a Windows 2000 Server with Active Directory and 10 Clients. Now, I
>> want to Data encryption on the Server. I have installed on a Windwos 2000
>> Server a CA. A User from a Workstation can encryption a File, this is ok.
>> The
>> User allocate gets the Certificate.
>> Therewith, the System very safely the User want to safe the private key
>> on
>> a Disk.
>> But, I cannot export the private key. This function cannot selected.
>> What can I do, at the Private key to export?

• Previous message: What's in a Name?: "Re: Netcraft Toolbar"
• In reply to: Roland Hübner: "RE: EFS"
• Next in thread: Pat Hoffer [MSFT]: "RE: EFS"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]