E
Eric
I have been testing EFS and its recovery as throughly as
possible before implementing it, and I ran into an
unexpected condition.
If I successively export the same unchanged certificate
and private key to two different .pfx files, the files are
the same length but do not compare equal. I don't know if
this is because the .pfx files are date/time stamped or
because of the Strong Encryption (iteration count) used
during the export.
I tried to do a Knowledge Base search but was unable to
find any information of why this is happening or even if
doing successive exports possibly invalidates previously
exported .pfx data.
My questions are:
1. Are all of the successively exported (from an unchanged
certificate) .pfx files valid to use for recovery or just
the most recently exported one?
2. Is there any way to compare the "live" EFS certificate
and private key to a .pfx file without having to import
the information?
3. What/where is an explanation for the significance of
the Strong Encryption "iteration count"?
possible before implementing it, and I ran into an
unexpected condition.
If I successively export the same unchanged certificate
and private key to two different .pfx files, the files are
the same length but do not compare equal. I don't know if
this is because the .pfx files are date/time stamped or
because of the Strong Encryption (iteration count) used
during the export.
I tried to do a Knowledge Base search but was unable to
find any information of why this is happening or even if
doing successive exports possibly invalidates previously
exported .pfx data.
My questions are:
1. Are all of the successively exported (from an unchanged
certificate) .pfx files valid to use for recovery or just
the most recently exported one?
2. Is there any way to compare the "live" EFS certificate
and private key to a .pfx file without having to import
the information?
3. What/where is an explanation for the significance of
the Strong Encryption "iteration count"?