<div>
<div class="content wysiwyg-content">
Hello<br />
<br />
We are thinking of using EFS to encrypt files in our Windows 2003 SP2 domain environment.<br />
<br />
According to the link below, EFS user certificates are stored in AD to allow for multi-server use (thanks woolnoir ;) )<br />
<br />
<a href="http://www.windowsecurity.com/articles/Understanding-EFS-Windows-2003.html" rel="ugc">http://www.windowsecurity.com/articles/Understanding-EFS-Windows-2003.html</a><br />
<br />
But does anyone know exactly where in AD they are stored? <br />
<br />

</div>
</div>


Hello

We are thinking of using EFS to encrypt files in our Windows 2003 SP2 domain environment.

According to the link below, EFS user certificates are stored in AD to allow for multi-server use (thanks woolnoir ;) )

http://www.windowsecurity.com/articles/Understanding-EFS-Windows-2003.html

But does anyone know exactly where in AD they are stored? 



Location of EFS Certificates in an AD environment

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Windows Server 2003 was based on Windows XP and was released in four editions: Web, Standard, Enterprise and Datacenter. It also had derivative versions for clusters, storage and Microsoft’s Small Business Server. Important upgrades included integrating Internet Information Services (IIS), improvements to Active Directory (AD) and Group Policy (GP), and the migration to Automated System Recovery (ASR).