EFS Recovery Agent certificate imported in Group Policy but not deployed to clients
Hi there
Enterprise CA W2k8 enterp.
I have created a certificate (CER file) for the EFS Recovery Agent. I create a new Active directory GPO for EFS, Computer Configuration and then Windows Settings , Security Settings , and Public Key Policies.
Everything works fine except the recovery certificate never appears in the clients, I mean, when a user encrypt a file, I then try to unencrypt the file with the DRA account, but I doesn´t work. the DEA certificated doesn´t appear.
Regards,
CarlosCAS
June 10th, 2011 2:44am
Hi Carlos,
Please first have a look at this thread:
Can't open EFS protected file with a DRA
http://social.technet.microsoft.com/Forums/en/winserversecurity/thread/079d1f7b-b188-43b3-a8d0-7dc6c9acd5d0
Meanwhile, run rsop.msc or gpresult /v to check if the Group Policy has been applied successfully.
Regards,
Bruce
This posting is provided "AS IS" with no warranties, and confers no rights. Please remember to click "Mark as Answer" on the post that helps you, and to click "Unmark as Answer" if a marked post does not actually answer your
question. This can be beneficial to other community members reading the thread.
Free Windows Admin Tool Kit Click here and download it now
June 13th, 2011 5:44am