Help!!
i had encrypted some sensitive data using the small encrypt check box and
everything was fine. than as it is a workplace computer, log in password had
to be changed after 30 days. since than none of the files are opening with an
"Access Denied" alert box.
On checking the certificate information I get this message witha red cross
next 2 it :-"This CA Root certificate is not trusted. To enable trust,
install this certificate in the Trusted Root Certificate..." certificate
dates are valid for the next 10 years...any help is appreciated.

=?Utf-8?B?QW50aG9ueQ==?= wrote:
>

In the future put any sensitive data on CD and put it in a file folder
in your home.




> i had encrypted some sensitive data using the small encrypt check box and
> everything was fine. than as it is a workplace computer, log in password had
> to be changed after 30 days. since than none of the files are opening with an
> "Access Denied" alert box.
> On checking the certificate information I get this message witha red cross
> next 2 it :-"This CA Root certificate is not trusted. To enable trust,
> install this certificate in the Trusted Root Certificate..." certificate
> dates are valid for the next 10 years...any help is appreciated.

--
http://www.bootdisk.com/

Anthony wrote:
> Help!!
> i had encrypted some sensitive data using the small encrypt check box and
> everything was fine. than as it is a workplace computer, log in password had
> to be changed after 30 days. since than none of the files are opening with an
> "Access Denied" alert box.
> On checking the certificate information I get this message witha red cross
> next 2 it :-"This CA Root certificate is not trusted. To enable trust,
> install this certificate in the Trusted Root Certificate..." certificate
> dates are valid for the next 10 years...any help is appreciated.
>

Did your IT department automatically change your password? If so, ask
them to (temporarily) restore your previous password. Then un-encrypt
all of your data and DO NOT USE WINDOWS ENCRYPTING FILE SYSTEM in the
future. See http://support.microsoft.com/kb/309408/en-us#7

If you nevertheless feel compelled to use EFS, follow the Best Practices
suggested here: http://support.microsoft.com/kb/223316/en-us

--
Lem -- MS-MVP - Networking

To the moon and back with 2K words of RAM and 36K words of ROM.
http://en.wikipedia.org/wiki/Apollo_Guidance_Computer
http://history.nasa.gov/afj/compessay.htm

=?Utf-8?B?QW50aG9ueQ==?= <(E-Mail Removed)> wrote
in news:38097355-2BE8-44EE-8674-(E-Mail Removed):

> Help!!
> i had encrypted some sensitive data using the small encrypt check
> box and everything was fine. than as it is a workplace computer,
> log in password had to be changed after 30 days. since than none
> of the files are opening with an "Access Denied" alert box.
> On checking the certificate information I get this message witha
> red cross next 2 it :-"This CA Root certificate is not trusted. To
> enable trust, install this certificate in the Trusted Root
> Certificate..." certificate dates are valid for the next 10
> years...any help is appreciated.
>

"User cannot gain access to certificate functionality after password
change or when using a roaming profile"

<http://support.microsoft.com/kb/331333>

HTH,
John

Hey thankz for the tips...changing the password back did the trick...though i
cant understand why it should work that way.

"Lem" wrote:

> Anthony wrote:
> > Help!!
> > i had encrypted some sensitive data using the small encrypt check box and
> > everything was fine. than as it is a workplace computer, log in password had
> > to be changed after 30 days. since than none of the files are opening with an
> > "Access Denied" alert box.
> > On checking the certificate information I get this message witha red cross
> > next 2 it :-"This CA Root certificate is not trusted. To enable trust,
> > install this certificate in the Trusted Root Certificate..." certificate
> > dates are valid for the next 10 years...any help is appreciated.
> >
>
> Did your IT department automatically change your password? If so, ask
> them to (temporarily) restore your previous password. Then un-encrypt
> all of your data and DO NOT USE WINDOWS ENCRYPTING FILE SYSTEM in the
> future. See http://support.microsoft.com/kb/309408/en-us#7
>
> If you nevertheless feel compelled to use EFS, follow the Best Practices
> suggested here: http://support.microsoft.com/kb/223316/en-us
>
> --
> Lem -- MS-MVP - Networking
>
> To the moon and back with 2K words of RAM and 36K words of ROM.
> http://en.wikipedia.org/wiki/Apollo_Guidance_Computer
> http://history.nasa.gov/afj/compessay.htm
>

=?Utf-8?B?QW50aG9ueQ==?= <(E-Mail Removed)> wrote
in news:73441294-A9E6-4E74-BF72-(E-Mail Removed):

> Hey thankz for the tips...changing the password back did the
> trick...though i cant understand why it should work that way.
>
>

Congratulations, you're one of the lucky ones.

Your comment about "can't understand why it should work this way" is
a good reason to *not* use Windows Encryption. If you need
encryption, I recommend excellent freeware "Truecrypt" which works
(among others) with a simple passphrase and can be used on all
flavors of Windows from Win2000 on. (Changing Windows passwords will
never cause you to lose access to your data).

<http://www.truecrypt.org>

If you insist on sticking with Windows File Encryption, then it is
imperative that you back up your Certificates *NOW* to prevent almost
certain data loss in the future. The procedure is described at the
end of the following article:

"Best practices for the Encrypting File System"
<http://support.microsoft.com/kb/223316>

HTH,
John