Back up the recovery agent key

by jimboyce in Microsoft

on January 26, 2005, 1:02 PM PST

Back up the recovery agent key

Use this tip to recover the Encrypting File System (EFS) private key if a user accidentally deletes it.

This tip is from TechRepublic’s weekly Windows 2000 Professional newsletter. Sign up instantly to begin receiving this free newsletter in your inbox.

The Encrypting File System (EFS) enables users
to securely encrypt files–a nearly effortless process because
Windows 2000 automatically creates the keys needed to encrypt and
decrypt the data. But if the user somehow deletes his or her EFS
private key, the encrypted data could be inaccessible. However,
Windows 2000 also creates a recovery agent key that can decrypt the
data.

Windows 2000 encrypts files with the recovery
agent’s public EFS key, as well as the user’s EFS key. This means
you can use the recovery agent’s key to decrypt the files if the
user’s key is lost.

By default, the local administrator account is
the default recovery agent for computers in a workgroup. The domain
administrator is the default recovery agent for computers in a
domain.

To protect against inaccessible data if there’s
a problem with the user keys, you should back up the recovery agent
key on any systems that use EFS. To export the key on a workgroup
computer, follow these steps:

Log on to the local computer using the local
administrator account, and run Secpol.msc.
Expand the Public Key Policies | Encrypted
Data Recovery Agents branch.
In the right pane, right-click the
certificate, and choose All Tasks | Export.
Choose Next when the wizard starts.
Choose Yes (Export The Private Key), and
click Next.
Follow the remainder of the wizard using the
default values, and specify a file to contain the key.
When the wizard finishes, copy the newly
created file to a safe network share, or copy it to a disk and
secure the disk in a safe location.

In the wizard, if you choose the option to
remove the private key from the computer after the export is
complete, you must restart the workstation or domain controller for
the removal to be complete.

If you need to back up the recovery agent key
for a domain, run Dompol.msc on the first domain controller in the
domain. Use the same procedure as above to export the key to a
file.

By jimboyce

Account Information

Contact jimboyce

Your message has been sent
|
See all of jimboyce's content

Editor's Picks

Image: Rawpixel/Adobe Stock

TechRepublic Premium
TechRepublic Premium editorial calendar: IT policies, checklists, toolkits and research for download

TechRepublic Premium content helps you solve your toughest IT issues and jump-start your career or next project.

TechRepublic Staff
Published: March 14, 2023, 9:10 AM EDT Modified: March 15, 2023, 9:16 AM EDT Read More See more TechRepublic Premium
Image: Blue Planet Studio/Adobe Stock

Payroll
The Best Human Resources Payroll Software of 2023

With a lot of choices in the market, we have highlighted the top six HR and payroll software options for 2023.

Ali Azhar
Published: February 28, 2023, 11:11 AM EST Modified: March 20, 2023, 4:45 PM EDT Read More See more Payroll
Image: Microsoft.

Software
Windows 11 update brings Bing Chat into the taskbar

Microsoft's latest Windows 11 allows enterprises to control some of these new features, which also include Notepad, iPhone and Android news.

Mary Branscombe
Published: February 28, 2023, 2:59 PM EST Modified: February 28, 2023, 2:59 PM EST Read More See more Software
Image: tanatat/Adobe Stock

CXO
Tech jobs: No rush back to the office for software developers as salaries reach $180,000

Salaries for remote roles in software development were higher than location-bound jobs in 2022, Hired finds.

Owen Hughes
Published: March 3, 2023, 3:12 PM EST Modified: March 16, 2023, 12:56 PM EDT Read More See more CXO
Image: Nuthawut/Adobe Stock

Software
The 10 best agile project management software for 2023

With so many agile project management software tools available, it can be overwhelming to find the best fit for you. We've compiled a list of 10 tools you can use to take advantage of agile within your organization.

Brenna Miles
Published: December 27, 2022, 11:45 AM EST Modified: March 16, 2023, 2:25 PM EDT Read More See more Software
Image: Song_about_summer/Adobe Stock

Security
1Password is looking to a password-free future. Here’s why

With phishing-based credentials theft on the rise, 1Password CPO Steve Won explains why the endgame is to 'eliminate’ passwords entirely.

Karl Greenberg
Published: March 2, 2023, 3:44 PM EST Modified: March 7, 2023, 4:10 PM EST Read More See more Security

PURPOSE These guidelines from TechRepublic Premium will help you define the necessary ingredients of a security policy and assist in its proper construction. They’re designed to work hand in hand with the subjective knowledge you have of your company, environment and employees. Using this information, your business can establish new policies or elaborate on those ...

PURPOSE Recruiting an Artificial Intelligence Architect with the right combination of technical expertise and experience will require a comprehensive screening process. This Hiring Kit from TechRepublic Premium provides an adjustable framework your business can use to find, recruit and ultimately hire the right person for the job. From the hiring kit: DETERMINING FACTORS, DESIRABLE PERSONALITY ...

PURPOSE Hiring the right Autonomous Systems Engineer requires a specific and precise recruitment process, supported by a thorough understanding of the project requirements. This Hiring Kit from TechRepublic Premium provides an adjustable framework your business can use to find, recruit and ultimately hire the right person for the job. From the hiring kit: DETERMINING FACTORS, ...

Back up the recovery agent key

Back up the recovery agent key

Editor's Picks

TechRepublic Premium editorial calendar: IT policies, checklists, toolkits and research for download

The Best Human Resources Payroll Software of 2023

Windows 11 update brings Bing Chat into the taskbar

Tech jobs: No rush back to the office for software developers as salaries reach $180,000

The 10 best agile project management software for 2023

1Password is looking to a password-free future. Here’s why

Guidelines for building security policies

Hiring kit: Artificial intelligence architect

Hiring kit: Autonomous systems engineer

Hiring kit: Application support engineer

Account Information

Back up the recovery agent key

Daily Tech Insider Newsletter

Account Information

Share with Your Friends

Account Information

Contact jimboyce

Editor's Picks

Daily Tech Insider Newsletter