Advertisement
I have a dilemma with an important file folder and files within that have been encrypted by a domain user mistakenly. If I try to go to properties of an encrypted file > advanced details and uncheck “encrypt contents to secure data” logged into the user’s computer as themselves, I get a you will need to apply administrative permissions to change these attributes followed by an “access denied”. I also get this logged into as administrator of the domain.<\/p>\n
The details show me logged in administrator of the domain as the recovery certificate holder and the user as a “user who can access this file”. However, I am unsure of what to do here next and don’t know much about EFS.<\/p>\n
![\"properties.jpg\"](\"https://us1.discourse-cdn.com/spiceworks/original/4X/1/d/6/1d6c99cae80e4a221245aad5546ede41d82a4e68.jpeg\")
<\/p>\n
Any help much appreciated.<\/p>","upvoteCount":8,"answerCount":3,"datePublished":"2019-10-31T01:18:49.000Z","author":{"@type":"Person","name":"nickmehlert6479","url":"https://community.spiceworks.com/u/nickmehlert6479"},"suggestedAnswer":[{"@type":"Answer","text":"
I have a dilemma with an important file folder and files within that have been encrypted by a domain user mistakenly. If I try to go to properties of an encrypted file > advanced details and uncheck “encrypt contents to secure data” logged into the user’s computer as themselves, I get a you will need to apply administrative permissions to change these attributes followed by an “access denied”. I also get this logged into as administrator of the domain.<\/p>\n
The details show me logged in administrator of the domain as the recovery certificate holder and the user as a “user who can access this file”. However, I am unsure of what to do here next and don’t know much about EFS.<\/p>\n
<\/p>\n
Any help much appreciated.<\/p>","upvoteCount":8,"datePublished":"2019-10-31T01:18:49.000Z","url":"https://community.spiceworks.com/t/help-decrypting-files-via-efs-encryption-windows-domain/737053/1","author":{"@type":"Person","name":"nickmehlert6479","url":"https://community.spiceworks.com/u/nickmehlert6479"}},{"@type":"Answer","text":"
So login to that server as the admin and you should be able to view and copy the file. In that case, EFS should do the decryption automagically.<\/p>","upvoteCount":0,"datePublished":"2019-10-31T15:15:24.000Z","url":"https://community.spiceworks.com/t/help-decrypting-files-via-efs-encryption-windows-domain/737053/2","author":{"@type":"Person","name":"DoctorDNS","url":"https://community.spiceworks.com/u/DoctorDNS"}},{"@type":"Answer","text":"
Tried that already. Logged into the server as the domain\\administrator shown as the recovery agent certificate above. Tried copying directly from the volume to the local desktop of the server and I get a “you need permissions to perform this action” even though the logged in administrator has full permissions and is the owner of the file.<\/p>\n
I even tried to resort to our backup and it looks like the files have been encrypted further back than our backup history goes of 2 years and so they are encrypted/‘locked’ on our backup and immovable.<\/p>\n
Any ideas of how do this via the recovery agent process?<\/p>","upvoteCount":0,"datePublished":"2019-10-31T15:28:39.000Z","url":"https://community.spiceworks.com/t/help-decrypting-files-via-efs-encryption-windows-domain/737053/3","author":{"@type":"Person","name":"nickmehlert6479","url":"https://community.spiceworks.com/u/nickmehlert6479"}}]}}
