WinXP NTFS EFS, PLEASE HELP

[Killa-b]

Ok so a long while ago beta 1? perhaps beta 2, i encrypted some files (1 folder with some sub's) they were on d drive. i formated my c and re-installed 2600, rtm, etc) and after the re-install i lost hte ability to open the files. i understand why (i lost the key to which they were encrypted with) and i looked in the recovery console and i have no recovery key set (by default as far as i can tell xp does not set one up)

so if anyone has any clue how to perhaps deal with this issue, it would be great to know. perhaps someone could e-mail me their recovery key, and i could use that to un-encrypt them, or perhaps im just up that creek i visit oh so often. next time i bring my paddle I SWEAR!!!

[Kieran]

Im sorry this isnt much help but I remember a guy posted the same question on this board about two weeks ago and some brainy guy came up with a solution. I cant remember what it is, but if you search through all the past posts you might be able to find it.

hope that helps

Kieran

[JustinLerner]

If you formatted already you're out of luck. The reason is this. EFS on 2000/XP will prevent you from getting into the files/directories/partions/disks that are encrypted because they enforce the security policies regardless of your settings.

Before you reformat you need to export your security and encryption certificate. If you didn't there is little you can do.

Before you reformatted you could also de-encrypt all the files/directories etc you need access to upon re-installation.

If you have Windows NT 4.0 anywhere, it may or may not be able to read the files (it ignores the EFS file system) since it didn't have EFS. However, NTFS on 4 is an earlier version than NTFS 5. I once did the same thing and copied the files to a NT 4.0 Server (PDC), and it was able to reset the permissions etc from the PDC, but my reinstalled OS and new PC was part of the domain! If you have NT 4.0 Workstation, it's worth a try.

[Killa-b]

i think a lot of my problems would be solved if i was on a doman.

take a look at one of your computers thats on its own, there is NO certificate to export. thats what gets me.

[vu059]

right click choose property and go to the security tab

click on advance then owner tab

it will show u the owner of the file and the current owner of the computer. click on the user name u want to be the owner and click apply and it will remove all security for dat file and u can access it again....just alil tip i learned while breaking into mai own system after 5betas of xp

try it and see if it work

[JustinLerner]

You can use the old %userprofile% (and it's associated data in the .dat files) using the above method EXCEPT if he encrypted the directories or any files with EFS.

Then the only way to get that data is with an already exported certificate or crack the encryption!

Of course it doesn't hurt to try, but it should not work if EFS was used on the directories/files.

[Killa-b]

efs was used. would anyone be able to export a certificate?

[JustinLerner]

Sorry, without hacking/cracking your own files, the only way to create a certificate by exporting is to do so before you reinstall.