Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Access an encrypted folder that is inside a netword shared folder.

Posted on 2013-10-31
12
Medium Priority
?
364 Views
Last Modified: 2013-12-10
I have an encrypted folder, files are not encrypted, that in inside a folder that is a network share. I can view the files and open them but I cannot create either a new folder or file from the network.

My user is an administrative user ans has full control for both share and security.


Any ideas what the problem might be?  I have a requirement to have the files encrypted at rest. The files must be on a network share.
0
Comment
Question by:jimmylew52
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
  • 2
  • +1
12 Comments
 
LVL 2

Expert Comment

by:ServerService
ID: 39615080
Well in windows only files can be encrypted but anyway lets see what can be done.

If you choose the folder setting "show encrypted files in alternate colour" you will be able to see what is encrypted .. in green colour normally.
Then see if any hidden files are there and unencrypt all with Admin acoount.

If still a problem copy all content out of the share and delete it . recreate it and move back files..
0
 
LVL 15

Expert Comment

by:ZabagaR
ID: 39615287
1. You must be doing this in a domain with EFS configured. If you're using workgroup sharing it will not work.  See the section "EFS in a Domain" in this link:
http://prowiki.isc.upenn.edu/wiki/EFS,_Encrypting_File_System

2. That link above notes that the computer doing the sharing has to be trusted for delegation.
The article above mentions this. Here's a link on how to: http://technet.microsoft.com/en-us/library/cc757963(v=ws.10).aspx

3. On this link: http://technet.microsoft.com/en-us/library/bb457116.aspx
Go to the section called "Remote EFS Operations on File Shares and Web Folders"
0
 
LVL 1

Author Comment

by:jimmylew52
ID: 39622184
I have read the links provided and setup the encrypted folder after generating and installing the certificates.

When I try to open the file from the remote system throught the files share as the same user that built the share i get "access denied."
0
Problems using Powershell and Active Directory?

Managing Active Directory does not always have to be complicated.  If you are spending more time trying instead of doing, then it's time to look at something else. For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why

 
LVL 15

Expert Comment

by:ZabagaR
ID: 39622375
If I think of anything else I'll post!
0
 
LVL 2

Expert Comment

by:ServerService
ID: 39622729
Jimmu - you should check if the user is owner of theese files and see the users effective persmissions
0
 
LVL 1

Author Comment

by:jimmylew52
ID: 39624095
User is owner of the files. Effective permissions is full control.
0
 
LVL 1

Author Comment

by:jimmylew52
ID: 39668783
After much searching it is apparent tat encrypted files cannot be accessed through a share. I have found several articles stating it can be done but nothing has worked.
0
 
LVL 38

Expert Comment

by:Rich Rumble
ID: 39668978
You use WebDav as stated above:
http://technet.microsoft.com/en-us/magazine/2006.05.howitworks.aspx
http://technet.microsoft.com/en-us/library/bb457116.aspx#EHAA
That means too that you need a CA on your domain.
-rich
0
 
LVL 1

Author Comment

by:jimmylew52
ID: 39708993
Still having problems even with the ca.
0
 
LVL 38

Accepted Solution

by:
Rich Rumble earned 2000 total points
ID: 39709494
Sorry, i gave up on EFS sooo long ago. It sounds like a great system to have, but as with anything in security, complexity is the enemy and EFS has plenty of complexity. You'd probably be better off using a webserver (over https) to serve files securely. And they can be encrypted by a variety of tools, even as simple a winzip/7zip for example.
-rich
0
 
LVL 1

Author Closing Comment

by:jimmylew52
ID: 39709959
I think I will do the same, Give up I mean.
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you thought ransomware was bad, think again! Doxware has the potential to be even more damaging.
Worried about if Apple can protect your documents, photos, and everything else that gets stored in iCloud? Read on to find out what Apple really uses to make things secure.
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

704 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question