which cert?

  • Thread starter Thread starter Lynn
  • Start date Start date
L

Lynn

i can see 2 encrypting file system certificates in my system. how can i
know which certificate my computer is actually using to encrypt my
files?
thanks
 
i can see 2 encrypting file system certificates in my system. how can i
know which certificate my computer is actually using to encrypt my
files?
thanks
Click to expand...
Load efsinfo.exe from the Windows Support Tools, and then run:
efsinfo /u /c /s:<dir>. This will report the thumbprint of the
certificate used to encrypt all files in the file system(both may have
been used over time).

You can then compare with the Thumbprint field for each certificate

Brian
 
if i am using a certificate generated by my local computer, how can i
find out who can decrypt my files?
 
the microsoft.public.win2000.security news group, Lynn
any help?
Click to expand...

Any help for what? You have not included any of the original post in
your follow-up and a lot of us don't keep copies of old posts. I have no
idea what you're asking about here.

--
Paul Adare
MVP - Windows - Virtual Machine
http://www.identit.ca/blogs/paul/
"The English language, complete with irony, satire, and sarcasm, has
survived for centuries without smileys. Only the new crop of modern
computer geeks finds it impossible to detect a joke that is not clearly
labeled as such."
Ray Shea
 
if i am using a certificate generated by my local computer, how can i
find out who can decrypt my files?
Click to expand...
Read my previous response. Run EFSINFO /R /U /C.
This will give you the thumbprints of every certificate that can open
the encrypted files. Any user account that has the certificate and
private key in their profile (EFS encryption or recovery) can open the
file.

Brian
 
i have shared out the encrypted files on computerA on the LAN. next, i
imported the EFS cert to another computerB. When i try to access the
shared folder on computerA it says access denied.
does it means that i can only decrypt the files on computerA only?
 
i have shared out the encrypted files on computerA on the LAN. next, i
imported the EFS cert to another computerB. When i try to access the
shared folder on computerA it says access denied.
does it means that i can only decrypt the files on computerA only?
Click to expand...
EFS is a different animal when you introduce network sharing. EFS is a
local file encryption technology. Any user that attempts to open the EFS
encrypted file will have to generate a local user profile for the
storage of the EFS encryption certificate and private key. In addition,
the computer account of the server (computerA in your case) must be
trusted for delegation to allow the computer to impersonate your
account.

Unless you start importing and exporting private keys between the
servers, you will be unable to connect to a remote encrypted file (or
implement roaming profiles or DIMS in the future).

I recommend you read up on the basics of EFS. Here are a few
whitepapers:
EFS:
http://www.microsoft.com/WindowsXP/pro/techinfo/administration/recovery/
default.asp
http://www.msdn.microsoft.com/library/default.asp?url=/library/en-
us/dnsecure/html/WinNETSrvr-EncryptedFileSystem.asp

Brian
 
Back
Top