0
I got a private home user that somehow??? accidentally encrypted his files with EFS. He was using windows XP and was unaware that the files were encrypted because his user account obviously had no problem accessing the files. His XP had trouble booting and he ask me to do an upgrade to windows 10...
Because of the haphazard file structure we decided to leave the drive as is and install windows 10 without changing the original file structure.
After we discovered we could no longer access my documents, I tried running a XP repair, Taking ownership, setting permissions to everyone, enabled inheritance and sharing the folder all of which failed.
The original account used to encrypt the files is still present on the drive, is there a way to extract the certificate form the old XP registry and import it to windows 10's active user? (This pc was never part of a domain)
Rhdr
Posted 2018-02-07T06:30:16.450
Reputation: 101
found this https://social.technet.microsoft.com/Forums/en-US/089f358d-68f1-426c-a6a6-0fa52ad274d3/import-efs-key-directly-from-xp-systemcertificates-folder?forum=w7itprosecurity
– Rhdr – 2018-02-07T09:38:27.7271If the user doesn't have the certificate, then the certificate cannot be exported, if the installation isn't working. If you could do that you would defeat the purpose of EFS. "is there a way to extract the certificate form the old XP registry and import it to windows 10's active user?" - No – Ramhound – 2018-02-07T14:51:14.513