Re: Serious EFS Issue

From: Miha Pihler (mihap-news_at_atlantis.si)
Date: 10/05/04

Next message: Jupiter Jones [MVP]: "Re: Serious EFS Issue"
Previous message: Research Services: "Re: Disable NetBIOS and NTLM on Windows 2003 Domain Controllers and Exchange 2003?"
In reply to: Dave Leonardi: "Serious EFS Issue"
Next in thread: Dave Leonardi: "Re: Serious EFS Issue"
Reply: Dave Leonardi: "Re: Serious EFS Issue"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Tue, 5 Oct 2004 17:09:21 +0200

Are private keys that were used to file encryption still in user's profile?
Was user's password changed by administrator (not by EFS private key
owner -- e.g. while computer was imaged/transfer to another computer)...

Were private keys exported ever before image process?

Mike

"Dave Leonardi" <daveleonardi@yahoo.com> wrote in message
news:%23LgCfTuqEHA.556@tk2msftngp13.phx.gbl...
> Good Morning,
>
> I had a question regarding Encrypted File System. I have a particular
> scenario where I encrypted an end user's My documents folder (Redirected
> Folder). What has happened is that her machine was since then imaged
> (ghosted). Now she is unable to retrieve her documents which are showing
to
> be encrypted with no recovery agent. Her encryption details shows her as
> being a user that can access the files, but she cannot access it nor
anyone
> else. She receives denied because of user access privileges. I as the
Domain
> admin cannot even access or unencrypted the files. We are running a native
> W3K Server environment with group policies and 2000/ XP Pro workstations.
> The individual's My Document files I'm having issues with is running XP
Pro
> SP1. I'd appreciate it anyone can possibly lend a solution to this
dilemma.
> Thank you for your time.
>
>
>
>
> Regards,
>
>
>
> David Leonardi
>
>

Next message: Jupiter Jones [MVP]: "Re: Serious EFS Issue"
Previous message: Research Services: "Re: Disable NetBIOS and NTLM on Windows 2003 Domain Controllers and Exchange 2003?"
In reply to: Dave Leonardi: "Serious EFS Issue"
Next in thread: Dave Leonardi: "Re: Serious EFS Issue"
Reply: Dave Leonardi: "Re: Serious EFS Issue"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: Does W2K hold users email, EFS etc private key securely ?
... the location of private keys doesn't depend on how the Encrypted Data ... the file encryption key is not the public key. ... It is the FEK that is encrypted using the user's EFS public key, ... protect your EFS keys by limiting the success of password guessing or theft. ...
(Focus-Microsoft)
Re: Key Evolving Encryption
... >to form a key for encryption. ... Represent each node in a binary tree by a binary string x representing ... by revealing the private keys at just Ointernal nodes in the tree. ...
(sci.crypt)
Re: Encrypting Email: What do I Need?
... > recipients have their own X.509 certificates. ... > all keeping our private keys to ourselves. ... but I am new to encryption. ... - you use the PUBLIC key of any recipientto encrypt THAT the symmetric key bytes ...
(microsoft.public.dotnet.security)
Re: Serious EFS Issue
... >> scenario where I encrypted an end user's My documents folder ... >> be encrypted with no recovery agent. ... Her encryption details shows ... She receives denied because of user access privileges. ...
(microsoft.public.windows.server.security)
Re: Fortune 50 secure e-mail
... >explicitly saying that they *didn't* store any private keys except their ... It's exactly the same thing PGP ... does - using a passphrase to decrypt the key when needed. ...
(comp.security.misc)