Password changed: Lost access to encrypted files

[Steve Swift]

In line with my company's policy, I set a maximum age for my XP Pro
userid password of 90 days.
A few days ago I got the final prompt that the password would expire in
one day, and would I like to change it. I said "Yes" and changed the
password.
Today, a few days later, I discover that I've lost access to my
encrypted files.
I changed my password back to my previous one (fortunately I'm not
enforcing password history) and then I could access my encrypted files.
I changed my password back to the new one, via "User Accounts" in the
control panel, and I still have access to my encrypted files.

Why is changing my password from the expiry prompt so unsafe?

 

[Guest]

It's a bug. If you are going to use encryption, it's more than just a good
idea to export your certs.

HOW TO Back Up Your Encrypting File System Private Key (Q241201):
http://support.microsoft.com/suppor...&qry=&rnk=14&src=DHCS_MSPSS_gn_SRCH&SPR=WINXP

 

[Steve Swift]

It's a bug. If you are going to use encryption, it's more than just a good

idea to export your certs.

A nigh perfect answer; short, succinct easy to follow. Thank you.

Do I have to re-export the certificate each time I change my password?
I presume that recovery is as simple as importing the certificate? I
didn't see any instructions for this.

 

[Guest]

start/run:

HH mkMSITStore:%windir%\Help\CMconcepts.chm::/sag_CMimportExport.htm

Every time you are about to change, you then 'export, change, import.' ''

I have found that the physical security problem the existance of a disk with
your certs creates can be handled best by a thumb drive (dongal?) on my
keychain. Anyway, it has to be secured.