I have EFS apply on my environment. the DRA was configured first and the DRA is the domain Admin/Enterprise Admin Account. The User int he HR department, encrypted all files on a share folder that is on a file server mapped to his user account via group policy.
The HR user is not longer accessing the files, and he is getting the "Access Denied" error when opening those files. The certificate is installed on this computer. The only thing that changed was his password as we have password policy of every 30 days changing. We have this implemented two months ago about.
My question is. how can this HR user be able to open those files again?
I have all certificate and privates keys in my CA server and HR user computer. Please be specific.