Re: Decrypting, Accessing an Encrypted file

From: Roger Abell [MVP] (mvpNOSPAM@asu.edu)
Date: 08/26/02

Next message: Roger Abell [MVP]: "Re: "the page cannot be displayed""
Previous message: D. Ualp: "Given 2 options at system start up"
In reply to: BigChocDad: "Decrypting, Accessing an Encrypted file"
Next in thread: D. Cross [MS]: "Re: Decrypting, Accessing an Encrypted file"
Reply: D. Cross [MS]: "Re: Decrypting, Accessing an Encrypted file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

From: "Roger Abell [MVP]" <mvpNOSPAM@asu.edu>
Date: Sun, 25 Aug 2002 15:55:26 -0700

A recovery agent is not defined by default in XP, so you
did not accidentally delete it.
Adding a recovery agent will not help you to decrypt files
that are already encrypted.
You need to determine what account encrypted the files,
and try accessing them from that account. The commandline
utility efsinfo will help you with this. Try: efsinfo /?
If you are not able to access the encrypted files when using
the correct account, try changing the password of the account
back to what it was when the files were last accessed.

--
Roger Abell
MS MVP (Windows Platform), MCSE, MCDBA
Associate Expert - Windows XP ExpertZone
http://www.microsoft.com/windowsxp/expertzone
"BigChocDad" <bigchocdad@freeuk.com> wrote in message
news:1030314020.80507.0@eos.uk.clara.net...
> I wonder if any body can help me.  I use XP professional running on a
> standalone computer.  I Somehow seemed to have encrypted a file that i
need
> to decrypt/access.  Ive tried to add a recovery agent to the machine (i
some
> how seemed to have deleted the default recovery agent), but when i try to
> add me as user (trusted user) certificate it tells me that the certificate
> is unacceptable to use for that task, but its the only one in the mmc that
> has the 'intended purpose' field value of 'encryption file system'.
>
> Can anybody help?
>
> Thanks in advance.
>
>

Next message: Roger Abell [MVP]: "Re: "the page cannot be displayed""
Previous message: D. Ualp: "Given 2 options at system start up"
In reply to: BigChocDad: "Decrypting, Accessing an Encrypted file"
Next in thread: D. Cross [MS]: "Re: Decrypting, Accessing an Encrypted file"
Reply: D. Cross [MS]: "Re: Decrypting, Accessing an Encrypted file"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: EFS, certificates etc
... created a certificate ... >for the Admin account, which I have designated as the ... >data recovery agent cannot. ... >>> encryption. ...
(microsoft.public.windowsxp.security_admin)
Re: Can no longer encrypt files
... It is saying the certificate for the "Recovery Agent" is invalid, ... > the actual account doing the Encryption. ... > Win2k, the designated recovery agent was the default "Domain Admin", WinXP ... This was working fine until the account password expired and was ...
(microsoft.public.windowsxp.security_admin)
Re: File Encryption Help Needed
... The machine's previous domain has no AD, which means NT4 server, right? ... If you have no recovery agent and no keys exported earlier, ... get back your files are logon as the old account assuming that DC is still ... > Let us be sure this is about encryption, ...
(microsoft.public.windowsxp.security_admin)
Re: Can no longer encrypt files
... the actual account doing the Encryption. ... Win2k, the designated recovery agent was the default "Domain Admin", WinXP ... This was working fine until the account password expired and was ...
(microsoft.public.windowsxp.security_admin)
RE: EFS Decryption
... I understand that you want to decrypt the files encrypted by a deleted ... In Windows 2000 domain, when the first domain controller is set up, ... the domain administrator is the specified recovery agent for the domain. ... Login to the user's system using the domain administrator account. ...
(microsoft.public.win2000.security)