• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 429
  • Last Modified:

EFS encryption on a domain

I have a user who encrypted some files on her folder on a network share. She recently got a new computer and can not access the files anymore. I can also not decrypt them on the server using the administrator login in 2008R2.

She can get these files from someone else but I was wondering how I can decrypt the files if that is possible at all? I created a recovery agent and either do not know the proper way to decrypt the file or it's just not working or setup properly.
1 Solution
BiofilmincAuthor Commented:
I had another user encrypt some files and I could open them and decrypt them with no problem.

So maybe the files I am having a problem with were encrypted before I created the recovery agent? Or is there an issue because these files came from a mac?
Cris HannaCommented:
You might take a look at this article http://technet.microsoft.com/en-us/library/cc512680.aspx
Data Recovery and Encrypting File System (EFS), written by a Microsoft Security MVP.   If you scroll down to the section on exporting, I believe you may have some options there.   In general the recovery agent should be created at the time the files are encrypted.
Rich RumbleSecurity SamuraiCommented:
Correct, you have to create the recovery agent first. If you don't have the user's profile from the old machine, it's useless to try to recover even if you know the users password. The password only protects the key used to encrypt, the key is not derived or determined from the users password.
If you have access to the old HD I'd recommend you try the Elcomsoft AEFSDR.

Also I'd recommend disabling EFS on your domain entirely. Files that are EFS encrypted now will still be accessable, but no future EFS files can be created. EFS is though to manage and correctly secure, there are other options out there that may be a better choice.
I have two articles on EE you may be interested in reading:

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now