Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations bkrike on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
XP Encryption
- Thread starter Teamaker
- Start date
You cannot encrypt FAT32 filestores, only NTFS.
How to Encrypt a Folder
How to Encrypt a Folder
- Thread starter
- #4
CAUSE
This behavior occurs if the permissions on the System Volume Information folder are modified so that System cannot write files. Encrypting File System (EFS) uses the System Volume Information folder on each volume to store its log file that is generated during the encryption and decryption process. By default, the System security principal has Full Control of that folder.
RESOLUTION
To resolve this behavior, give the System security principal Full Control over the System Volume Information folder.
MS KB Q264064
This behavior occurs if the permissions on the System Volume Information folder are modified so that System cannot write files. Encrypting File System (EFS) uses the System Volume Information folder on each volume to store its log file that is generated during the encryption and decryption process. By default, the System security principal has Full Control of that folder.
RESOLUTION
To resolve this behavior, give the System security principal Full Control over the System Volume Information folder.
MS KB Q264064
- Thread starter
- #6
- Thread starter
- #7
Silly me solved the prob. I had put the folder that i wanted to encrypt in the Windows dir apparently you can't encrypt folders in there moved it to my docs and no prob.
Thanks for help tho.
!!A good cup of Tetley keeps the madness at bay!!
Thanks for help tho.
!!A good cup of Tetley keeps the madness at bay!!
- Thread starter
- #8
- Thread starter
- #10
pounderarthur
Technical User
Unless you are loggin into a domain, You will need to log into the system as the Local Administrator - and assign yourself as a recovery agent.
Reboot the computer to safe mode and log on as the adminstrator ... failing that
install a second HD, and format it as FAT, (2Gb is the largest you'll be able to format this drive via my computer interface) ... then MOVE the files from the NTFSv5.01 drive to the FAT ... this will automatically remove encryption
Arthur
Reboot the computer to safe mode and log on as the adminstrator ... failing that
install a second HD, and format it as FAT, (2Gb is the largest you'll be able to format this drive via my computer interface) ... then MOVE the files from the NTFSv5.01 drive to the FAT ... this will automatically remove encryption
Arthur
- Thread starter
- #13
Thanks guys i've sorted it.
Just for info i was logged on as local admin when i encrypted them and when i tried to decrypt them.
Anyway i burned them to CD and then copied them back to my HD and it's all fine now.
Cheers.
!!A good cup of Tetley keeps the madness at bay!!
Just for info i was logged on as local admin when i encrypted them and when i tried to decrypt them.
Anyway i burned them to CD and then copied them back to my HD and it's all fine now.
Cheers.
!!A good cup of Tetley keeps the madness at bay!!
pounderarthur
Technical User
Hiya,
For future reference MS KBQ 290 260, ( explains how to recover encrypted data after a password reset ..
Arthur
For future reference MS KBQ 290 260, ( explains how to recover encrypted data after a password reset ..
Arthur
pounderarthur
Technical User
bcastner,
Please if you're going to state that I am wrong then please explain why ...However, in this case you're wrong ...
Just for inforamtion ... due to the level of encryption ustilised by EFS, (56bit - Standard, and 128Bit within US), copying / moving encrypted files to a FAT partition will automatically unencrypt the folder / files ...
Recommendation is to encrypt at the folder rather than the files .. because if an encrypted file is open then a "clear" & very accessible version of the file is created within the directory ..
Arthur
Don't just be a techie & slag someone off for offering a different opinion - because we live in a democracy we all have a voice - offer constructive critisism and a reason why you believe someone is wrong ...
Please if you're going to state that I am wrong then please explain why ...However, in this case you're wrong ...
Just for inforamtion ... due to the level of encryption ustilised by EFS, (56bit - Standard, and 128Bit within US), copying / moving encrypted files to a FAT partition will automatically unencrypt the folder / files ...
Recommendation is to encrypt at the folder rather than the files .. because if an encrypted file is open then a "clear" & very accessible version of the file is created within the directory ..
Arthur
Don't just be a techie & slag someone off for offering a different opinion - because we live in a democracy we all have a voice - offer constructive critisism and a reason why you believe someone is wrong ...
- Thread starter
- #16
pounderarthur you were right and thank you.
I had actually encrypted at the folder level, but for whatever reason i could not decrypt them. Simply logging on as administrator and burning the files to cd removed the encryption as CDFS does not support it, similar to what you said with the FAT HD.
!!A good cup of Tetley keeps the madness at bay!!
I had actually encrypted at the folder level, but for whatever reason i could not decrypt them. Simply logging on as administrator and burning the files to cd removed the encryption as CDFS does not support it, similar to what you said with the FAT HD.
!!A good cup of Tetley keeps the madness at bay!!
pounderarthur,
I am not picking on you, I just find not a single aspect of your commnet to be true:
"Reboot the computer to safe mode and log on as the adminstrator ... failing that
install a second HD, and format it as FAT, (2Gb is the largest you'll be able to format this drive via my computer interface) ... then MOVE the files from the NTFSv5.01 drive to the FAT ... this will automatically remove encryption"
It is not true that someone who cannot do a local Administrator logon can install a slave disk, copy EFS files and have them automaticly decrypt.
You notion of partition size limits is also wrong.
The only recovery agents are:
. The creator/owner of the files and/or folders;
. In a non-Domain setting, the local Administrator;
. In a Domain setting, the Domain Administrator;
. In all settings, someone deliberately granted the security keys
Adding a second disk as non-administrator does not a thing to allow you to decrypt the files. Nothing. What you will end up with is a new hard disk full of unreadable folders and files.
I am not picking on you, I just find not a single aspect of your commnet to be true:
"Reboot the computer to safe mode and log on as the adminstrator ... failing that
install a second HD, and format it as FAT, (2Gb is the largest you'll be able to format this drive via my computer interface) ... then MOVE the files from the NTFSv5.01 drive to the FAT ... this will automatically remove encryption"
It is not true that someone who cannot do a local Administrator logon can install a slave disk, copy EFS files and have them automaticly decrypt.
You notion of partition size limits is also wrong.
The only recovery agents are:
. The creator/owner of the files and/or folders;
. In a non-Domain setting, the local Administrator;
. In a Domain setting, the Domain Administrator;
. In all settings, someone deliberately granted the security keys
Adding a second disk as non-administrator does not a thing to allow you to decrypt the files. Nothing. What you will end up with is a new hard disk full of unreadable folders and files.
- Thread starter
- #18
bcastner, if you scroll up the post you will see that i said
"Just for info i was logged on as local admin when i encrypted them and when i tried to decrypt them.
Anyway i burned them to CD and then copied them back to my HD and it's all fine now."
Anyway not to worrt all sorted now.
!!A good cup of Tetley keeps the madness at bay!!
"Just for info i was logged on as local admin when i encrypted them and when i tried to decrypt them.
Anyway i burned them to CD and then copied them back to my HD and it's all fine now."
Anyway not to worrt all sorted now.
!!A good cup of Tetley keeps the madness at bay!!
- Thread starter
- #20
- Status
Similar threads
- Locked
- Question