You must be logged on as an administrator to perform these steps.
A recovery certificate is a special Encrypting File System (EFS) certificate you can use to recover encrypted files if your encryption key is lost or damaged. You need to create the recovery certificate, install it, and then update previously encrypted files with the new recovery certificate.
Note
- These steps cannot be completed on Windows 7 Starter, Windows 7 Home Basic, and Windows 7 Home Premium.
Click to open Command Prompt.
- Insert the removable media that you're using to store your certificate.
- Navigate to the directory on the removable media drive where you want to store the recovery certificate by typing drive letter: (where drive letter is the letter of the removable media), and then press Enter.
- Type cipher /r: file name (where file name is the name that you want to give to the recovery certificate), and then press Enter.
If you are prompted for an administrator password or confirmation, type the password or provide confirmation.
Notes
- Windows will store the certificate in the directory shown at the command prompt.
- You should store the removable media containing the recovery certificate in a secure location, such as a locked desk drawer.
You should store your recovery certificate on removable media such as a disc or USB flash drive.
To install the recovery certificate
- Insert the removable media that contains your recovery certificate.
- Click the Start button
. In the search box, type secpol.msc, and then press Enter.
- In the left pane, double-click Public Key Policies, right-click Encrypting File System, and then click Add Data Recovery Agent. This opens the Add Recovery Agent wizard.
- Click Next, and then navigate to your recovery certificate.
- Click the certificate, and then click Open.
- When you are asked if you want to install the certificate, click Yes, click Next, and then click Finish.
- At the command prompt, type gpupdate, and then press Enter.
Post A Comment:
0 comments so far,add yours