Do I need AD to use EFS?, part 2

In the answer to the question: Do I need AD to use EFS? I think an important part is missing. The computer must not only be delegated for trust, but must also be able to access the public key of the user to be able to decrypt after receiving the file.

You are correct. The answer was not a tutorial on how to set up this type of storage, but of course the users' EFS public key must be available. This can be accomplished either by using roaming profiles, or by exporting and importing. If no key is available, however, a new EFS certificate may be generated on the server. (This, of course, can be a problem, since the users' local private key will be different than that on the server and now two keys need to be backed up.) If, however, there is no delegation and no key on the server, the file is encrypted locally in a temporary file using the user's EFS public key, then it is sent to the server. When the user next accesses the file, it is downloaded into a temp file and then decrypted using his local keys.

Related Resources

A Computer Weekly buyer's guide to desktop computing 2020 –ComputerWeekly.com
Modernize your Windows applications with containers on AWS –Cloudreach Inc.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

Meet all of our Enterprise Desktop experts

View all Enterprise Desktop questions and answers

Do I need AD to use EFS?, part 2

Dig Deeper on Windows applications

4 steps to check application compatibility with Windows 10

Microsoft acquisition of Express Logic adds IoT improvements

How the Microsoft Teams app can boost collaboration

How to create an effective PC lifecycle policy

Microsoft acquisition of Express Logic adds IoT improvements

Windows application management software comes to IT's aid

AI tools fall into the hands of end users

Logon times play key role in virtual desktop UX monitoring

4 steps to check application compatibility with Windows 10

Effective end-user management helps fuel productivity

How AI and machine learning affect end-user computing

How to fit companion apps into the desktop workflow

How the Microsoft Teams app can boost collaboration

LibreOffice 6.0 pushes for enterprise viability

Maximize PC lifespans with effective PC lifecycle management

What's your biggest concern with machine learning and AI?

How to create an effective PC lifecycle policy

Tread carefully with modern Windows application management

Conquer the end-user productivity balancing act

Maximize PC lifespans with effective PC lifecycle management

When should IT consider an outsourced help desk?

End-user computing strategy bears these top challenges

Why IT needs a standard application install package

Unravel the truth with end-user experience monitoring tools

Have a question for an expert?

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchVirtualDesktop

5 Windows Virtual Desktop management tools to consider

4 unforeseen challenges of running VDI in the cloud

DaaS brings GPU-accelerated applications within reach

SearchWindowsServer

What's new with the Exchange hybrid configuration wizard?

Top Office 365 MFA considerations for administrators

October Patch Tuesday resolves 59 vulnerabilities

Related Resources

Dig Deeper on Windows applications

Have a question for an expert?

Start the conversation

0 comments

Register

Login

Forgot your password?

Your password has been sent to:

Please create a username to comment.