Cannot access encrypted files after changing log-in password!

[Guest]

Help!!
i had encrypted some sensitive data using the small encrypt check box and
everything was fine. than as it is a workplace computer, log in password had
to be changed after 30 days. since than none of the files are opening with an
"Access Denied" alert box.
On checking the certificate information I get this message witha red cross
next 2 it :-"This CA Root certificate is not trusted. To enable trust,
install this certificate in the Trusted Root Certificate..." certificate
dates are valid for the next 10 years...any help is appreciated.

 

[Plato]

In the future put any sensitive data on CD and put it in a file folder
in your home.

 

[Lem]

Help!!
i had encrypted some sensitive data using the small encrypt check box and
everything was fine. than as it is a workplace computer, log in password had
to be changed after 30 days. since than none of the files are opening with an
"Access Denied" alert box.
On checking the certificate information I get this message witha red cross
next 2 it :-"This CA Root certificate is not trusted. To enable trust,
install this certificate in the Trusted Root Certificate..." certificate
dates are valid for the next 10 years...any help is appreciated.

Did your IT department automatically change your password? If so, ask
them to (temporarily) restore your previous password. Then un-encrypt
all of your data and DO NOT USE WINDOWS ENCRYPTING FILE SYSTEM in the
future. See http://support.microsoft.com/kb/309408/en-us#7

If you nevertheless feel compelled to use EFS, follow the Best Practices
suggested here: http://support.microsoft.com/kb/223316/en-us

--
Lem -- MS-MVP - Networking

To the moon and back with 2K words of RAM and 36K words of ROM.
http://en.wikipedia.org/wiki/Apollo_Guidance_Computer
http://history.nasa.gov/afj/compessay.htm

 

[John Wunderlich]

Help!!
i had encrypted some sensitive data using the small encrypt check
box and everything was fine. than as it is a workplace computer,
log in password had to be changed after 30 days. since than none
of the files are opening with an "Access Denied" alert box.
On checking the certificate information I get this message witha
red cross next 2 it :-"This CA Root certificate is not trusted. To
enable trust, install this certificate in the Trusted Root
Certificate..." certificate dates are valid for the next 10
years...any help is appreciated.

"User cannot gain access to certificate functionality after password
change or when using a roaming profile"

<http://support.microsoft.com/kb/331333>

HTH,
John

 

[Guest]

Hey thankz for the tips...changing the password back did the trick...though i
cant understand why it should work that way.

 

[John Wunderlich]

Hey thankz for the tips...changing the password back did the
trick...though i cant understand why it should work that way.

Congratulations, you're one of the lucky ones.

Your comment about "can't understand why it should work this way" is
a good reason to *not* use Windows Encryption. If you need
encryption, I recommend excellent freeware "Truecrypt" which works
(among others) with a simple passphrase and can be used on all
flavors of Windows from Win2000 on. (Changing Windows passwords will
never cause you to lose access to your data).

<http://www.truecrypt.org>

If you insist on sticking with Windows File Encryption, then it is
imperative that you back up your Certificates *NOW* to prevent almost
certain data loss in the future. The procedure is described at the
end of the following article:

"Best practices for the Encrypting File System"
<http://support.microsoft.com/kb/223316>

HTH,
John