B
Brandon
I have found a bug in Vista . . . a rather costly bug for me. Hopefully MS
will fix or others will avoid.
Scenario:
1. I had EFS encrypted files on a XP Pro machine. I upgraded that machine
to vista using the method where Vista moves all XP files into the
windows.old directory.
2. After upgrading, I moved my encrypted files from the windows.old
directory to the users\user\documents directory.
3. I then restored my XP encryption key which I had backed up so I could
open these files.
4. These encrypted files now opened fine using the restored cert & key from
XP.
5. I then deleted the Vista certificate and key (not the restored cert &
key) because the cert & key Vista had created during install was not needed
since I was using the cert & key from my XP install.
6. For a few days, the files opened just fine.
7. Here's the bug . . . Having worked with these files one night just fine,
I shut down my computer. The next morning when I booted up, none of the
files would open. After extensive research using efsinfo.exe, I determined
that Vista had AUTOMATICALLY changed the thumbprint associated with the
files. The EFS thumbprint was no longer associated with the restored XP
cert & key, but it was now associated with the Vista cert & key that I had
deleted several days before.
So now, I have no way of opening these files because vista automatically
changed their EFS key association to a non-existant cert.
Brandon
will fix or others will avoid.
Scenario:
1. I had EFS encrypted files on a XP Pro machine. I upgraded that machine
to vista using the method where Vista moves all XP files into the
windows.old directory.
2. After upgrading, I moved my encrypted files from the windows.old
directory to the users\user\documents directory.
3. I then restored my XP encryption key which I had backed up so I could
open these files.
4. These encrypted files now opened fine using the restored cert & key from
XP.
5. I then deleted the Vista certificate and key (not the restored cert &
key) because the cert & key Vista had created during install was not needed
since I was using the cert & key from my XP install.
6. For a few days, the files opened just fine.
7. Here's the bug . . . Having worked with these files one night just fine,
I shut down my computer. The next morning when I booted up, none of the
files would open. After extensive research using efsinfo.exe, I determined
that Vista had AUTOMATICALLY changed the thumbprint associated with the
files. The EFS thumbprint was no longer associated with the restored XP
cert & key, but it was now associated with the Vista cert & key that I had
deleted several days before.
So now, I have no way of opening these files because vista automatically
changed their EFS key association to a non-existant cert.
Brandon