Creating Recovery agent and recovering EFS files in standalone XP Machine

Posted on 2006-07-08
Last Modified: 2012-08-14
  I have a stand alone windows xp professional machine. I'm using EFS and encrypting files in my hard drive. I want to be able to recover those files even if the disk crashes. I created a recovery agent certificate for local admin using command cipher /r:filename

Now i would like to know what the remaining steps are to succesfully exporting the private key and be able to read this encrypted file in another machine using those exported keys.

Thanks for all your help!

Question by:mvvinod
  • 2
  • 2
LVL 59

Expert Comment

ID: 17067570
This MSKB article should be of help:;en-us;241201
How to back up the recovery agent Encrypting File System (EFS) private key in Windows Server 2003, in Windows 2000, and in Windows XP

Author Comment

ID: 17068748
Once i back this up, how do i restore this to another machine to test and see if i can decrypt those files...???

LVL 59

Accepted Solution

LeeTutor earned 500 total points
ID: 17069605
This page has everything you would ever want to know about EFS (probably more than you would ever want to know):

There is a section on importing the EFS recovery agent private key, as well as a lot of other information.

Author Comment

ID: 17086740
Great pointer. Thank you!

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Healthcare providers, insurance companies and other covered entities trust eFax Corporate to transmit their most sensitive documents. eFax Corporate can help your organization implement a HIPAA compliant cloud faxing solution.
Many companies are looking to get out of the datacenter business and to services like Microsoft Azure to provide Infrastructure as a Service (IaaS) solutions for legacy client server workloads, rather than continuing to make capital investments in h…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
A simple description of email encryption using a secure portal service. This is one of the choices offered by The Email Laundry for email encryption. The other choices are pdf encryption which creates an encrypted pdf of your email and any attachmen…

911 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now