EFS certificate/privatekey cache


O

Ondrej Sevecek

Hello,
scenario is as follows:

1) have no files EFS encrypted (e.g. new profile)
2) encrypt some file = autogenerated certificate
3) export the certicate with private key and let THE PRIVATE KEY DELETE
4) file is still accessible due to cert/keys present in "EFS cache"
5) log off
6) log on
7) file is STILL ACCESSIBLE - keys are still in cache

so as I tried it, EFS key cache is flushed only through restart.

Is there any method to flush the cashe from user's session?

Thanks Ondra.
 
Ad

Advertisements

S

Steven L Umbach

In Windows 2000 you need to reboot. XP will clear it with a logoff. ---
Steve
 
O

Ondøej ©eveèek

Many thanks. Can I force key flush from the session?

Ondra.
 
S

Steven L Umbach

There is no way that I know of. --- Steve

Ondøej ©eveèek said:
Many thanks. Can I force key flush from the session?

Ondra.
 
Ad

Advertisements

D

Drew Cooper [MSFT]

Other than rebooting, there is one way to flush the cache: Do EFS operations
with enough new users that the original user's cache entry is bumped. (I
don't remember what our cache size was in Win2k. 100, maybe?)
--
Drew Cooper [MSFT]
This posting is provided "AS IS" with no warranties, and confers no rights.


David Cross said:
No, there is no mechanism to flush the cache

--


David B. Cross [MS]

--
This posting is provided "AS IS" with no warranties, and confers no rights.

http://support.microsoft.com

Ondøej ©eveèek said:
Many thanks. Can I force key flush from the session?

Ondra.
 
Ad

Advertisements


Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments. After that, you can post your question and our members will help you out.

Ask a Question

Similar Threads

EFS - No Certificate?? 3
EFS certificate renewal 4
EFS through Certificates 1
EFS certificate server 2
EFS certificate renewal 0
EFS and Certificate Services 9
EFS Certificate Issue 5
EFS certificate has expired 3

Top