EFS expired certificate

  • Thread starter Thread starter Rob M
  • Start date Start date
R

Rob M

EFS has stopped working on my Win XP SP3 computer. When I try to
encrypt a file, I receive the message, "Recovery policy configured for
this system contains invalid recovery certificate."

I finally traced the problem to an expired file recovery certificate
that's visible only under rsop.msc | computer configuration | windows
settings | public key policies | encrypting file system. I can't find
the certificate through certmgr.msc or gpedit.msc to delete or renew
it. It's like the certificate exists only through rsop.msc.

Any suggestions on what to do?

Thanks,
Rob
 
Thanks for the reply. Yes, it's on a domain. But no other computers on the domain have the expired certificate as far as I can tell.

I was not able to decrypt encrypted files. Fortunately I had a back-up that I was able to use.

Thanks,
Rob
 
Thank you. I have admin rights on this computer, but the problem has persisted when other accounts are created and also with the built-in local admin account. Is there any way to take care of the problem without involving the network administrator?
 
Back
Top