Results 1 to 4 of 4

Thread: EFS Problem

  1. #1
    Junior Member
    Join Date
    Sep 2006

    EFS Problem


    I'm having a problem with EFS. I inadvertently encrypted a directory under Windows 2000. I backed up the 'Documents and Settings' folders (but did not export any keys) before reformatting the hard drive, and was left with quite a number of encryption keys in various locations. I've now switched to XP, and am unable to decrypt the encrypted files (which are still on another drive - I've not been able to move them). Advanced EFS Recovery doesn't do the trick, and I've tried moving the old key files to the XP locations where I presume they should be, but again without success. Is there any way around this problem?

    Many thanks for any advice.

  2. #2
    Old and Cranky Super Moderator rik's Avatar
    Join Date
    Aug 2003
    Watching Your every move...
    Not that I have found.

  3. #3
    Super Moderator Super Moderator Big Booger's Avatar
    Join Date
    Apr 2002
    Sounds like your data is dust. But others have fought the battle that is now upon you:

    You could try getting the data off the drive you reformatted. With the keys you could then access your content (but you'll need to find that data on the formatted drive which might be difficult if not impossible depending on how you formatted)

  4. #4
    Succeded in braking Windo TZ Veteran Dehcbad25's Avatar
    Join Date
    Apr 2002
    DE - USA
    I don't remember quite well, but it would be easier if the computer was part of a domain since a domain has a "master" certificate for the administrator.
    I have not read the article that boogs posted, and I am not sure about this, but if it was myself I would try a couple of things.
    1) try to imitate the master example from domain. Login as administrator (you have to have a password set on the administrator account, if your password is blank, you have to login in safe mode, and then change the password. DONOT CHANGE THE PASSWORD BY RESETING IT!!). As the administrator I would look into assigning a new certificate, or changing ownership of the files.
    2) I would try to join the computer to a domain, and again use the domain recovery certificate. I am not sure if this actually works with local accounts, but it is worth a try.
    I have not really used efs much since the users in my network are "complicated" so I would have locked files, corrupted or heaches wayy too ofteeennn.
    Just as an example, I am currently fighting a losing battle of explaining why the antivirus blocks multiple file extensions in emails. Aparently some higher up, thought it was a good idea to save files like 9.06.2006.whatever.doc and spread the word. Now I have about 1500 files in the server that cannot be emailed until renamed

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts