You must be logged on as an administrator to perform these steps.
A recovery certificate is a special Encrypting File System (EFS) certificate that, when it is properly created and installed, enables you to recover encrypted files if your encryption key is lost or damaged. You need to create the recovery certificate, install it, and then update previously encrypted files with the new recovery certificate.
NoteThese steps cannot be completed on Windows Vista Starter, Windows Vista Home Basic, and Windows Vista Home Premium.
We recommend storing your recovery certificate on removable media such as a CD or USB flash drive.
1.
Open the Command Prompt window by clicking the Start button , clicking All Programs, clicking Accessories, and then clicking Command Prompt.
2.
Plug in or insert the removable media that you're using to store your certificate.
3.
Navigate to the directory on the removable media drive where you want to store the recovery certificate, type cipher /r:file name (where file name is the name that you want to give to the recovery certificate), and then press ENTER. If you are prompted for an administrator password or confirmation, type the password or provide confirmation.
Notes
Windows will store the certificate in the directory shown at the command prompt.
You should store the removable media containing the recovery certificate in a secure location, such as a locked desk drawer.
Insert the removable media that contains your recovery certificate.
2.
Open Local Security Policy by clicking the Start button , typing secpol.msc into the Search box, and then clicking secpol. If you are prompted for an administrator password or confirmation, type the password or provide confirmation.
3.
Click Public Key Policies, right-click Encrypting File System, and then click Add Data Recovery Agent. This opens the Add Recovery Agent wizard.
4.
Click Next, and then navigate to your recovery certificate.
5.
Click the certificate, and then click Open.
6.
When you are asked if you want to install the certificate, click Yes, click Next, and then click Finish.
7.
Open the Command Prompt window by clicking the Start button , clicking All Programs, clicking Accessories, and then clicking Command Prompt.
8.
At the command prompt, type gpupdate, and then press ENTER.
Log on to the account you were using when you first encrypted the files.
2.
Open the Command Prompt window by clicking the Start button , clicking All Programs, clicking Accessories, and then clicking Command Prompt.
3.
At the command prompt, type cipher /u, and then press ENTER.
If you choose not to update encrypted files with the new recovery certificate at this time, the files will automatically be updated the next time you open them.
A sequence of symbols or characters used to scramble or unscramble information that is being encrypted or decrypted.
Removable media
__elbasuer__
Removable media
Anything used for information storage that is designed to be easily inserted into and removed from a computer or portable device. Common removable media include CD and DVD discs, as well as removable memory cards.
Help and How-to
