Location of EFS Certificates in an AD environment

Hello

We are thinking of using EFS to encrypt files in our Windows 2003 SP2 domain environment.

According to the link below, EFS user certificates are stored in AD to allow for multi-server use (thanks woolnoir ;) )

http://www.windowsecurity.com/articles/Understanding-EFS-Windows-2003.html

But does anyone know exactly where in AD they are stored?

LVL 2
bruce_77Asked:
Who is Participating?
 
jasonlcssConnect With a Mentor Commented:
All installed certificates are kept in the certificate authority (CA), if this is not yet installed you can check out the instructions here:  http://www.petri.co.il/install_windows_server_2003_ca.htm

Once this is installed you can also distribute your newly installed certificates to all required users via a GPO to the entire Forrest/Domain or just enforced to a specific OU that contains the effected users
0
 
jasonlcssCommented:
Did you try this, did it help?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.