Re: Encrypting File System
From: Jupiter Jones [MVP] (jones_jupiter_at_hotnomail.com)
Date: 05/11/04
- Next message: Dave K: "Win XP asking for password after removing a virus"
- Previous message: P. Took: "Help!!!"
- In reply to: Captain Smegma: "Encrypting File System"
- Next in thread: Roger Abell: "Re: Encrypting File System"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Tue, 11 May 2004 11:57:09 -0600
If you do not have back-ups of the original keys, you can not decrypt
the data.
Creating a recovery Agent after the fact will not work.
For what you seem to want, you should stick with NTFS permissions and
avoid EFS.
There is not and there should not be a way to decrypt the data without
the proper keys, if there were EFS would be worthless.
See this link for ways to prevent this in the future:
http://www3.telus.net/dandemar/encrypt.htm
-- Jupiter Jones [MVP] http://www3.telus.net/dandemar/ "Captain Smegma" <charles at matchwalk dot com> wrote in message news:45C2A4CA-027E-4D0B-8B73-271A39984D2D@microsoft.com... > I recently had to re-install my OS from scratch. Whilst there's nothing unusual about that, I made the error of not de-crypting some data I had on another disk first. Was that ever a mistake! > I looked for assistance in the Help system and found several items of interest - eventually. The Help seems to say that, in order to decrypt folders and files, you have to be a Recovery Agent. OK - how do I get to be one? I find the instructions to create myself as a recovery agent and follow them to the letter. Actually, that's not quite true - the last step is described incorrectly in the Help file, although well enough top make me think I was doing what was required. And that's where everthing stops. The process does not work, at least, not for me. I've logged on as the Administrator, who should have right automatically assigned and nothing happens. I've logged on as the first of two accounts created after installion of the OS - creating new accounts as the Administrator is supposed to transfer the status of default recovery agent to the first-created account and again, nothing happens. I get the feeling from the Help text, that there should be a file called *.cer somewhere but I cannot locate one. > I've tried everything I can think of to get around the problem of not having the original private key and NOTHING works for me. I've tried local restoration, remote restoration, doing a backup and restoring to a FAT32 partition - everything that I can think of. The question is now - presumably Microsoft would allow encrypted data to be decrypted by someone without the relevant key? Of course they would - it says so in the Help system. But IT DOESN'T WORK LIKE IT SAYS ON THE PACKET! I'm getting increasingly frustrated and need to know what I'm doing wrong or what extra slip of information I'm currently missing. Can anybody help, please? > Thanks in advance.
- Next message: Dave K: "Win XP asking for password after removing a virus"
- Previous message: P. Took: "Help!!!"
- In reply to: Captain Smegma: "Encrypting File System"
- Next in thread: Roger Abell: "Re: Encrypting File System"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
