We have allowed EFS on our File Server.
We are using AD and PKI Certs.
The first certs that were created, was a basic efs.
The CA Admin, made a template for all users, that would do EFS, Email and Identity.
Then revoked all the basic EFS certs.
We Published the CLR
Restarted the Certificate Services.
All users are still using the revoked certs, when utilitzing EFS.
I have tried the following:
certutil -setreg chain\ChainCacheResyncFiletime @now
and every command in this link
http://technet.microsoft.com/en-us/library/ee619754%28v=ws.10%29.aspx
nothing is removing the old cert from being used.
Can someone give insight? I need to get this working ASAP.
Thanks
- Edited by TheComputerChick 12 hours 48 minutes ago