Книга: Windows Server 2012 R2 Storage, Security, & Networking Pocket Consultant

Backing up and restoring encrypted data and certificates


You can back up and restore encrypted data like you can any other data. The key thing to remember is that you must use backup software that understands EFS, such as the built-in backup and restore tools. You must be careful when using this type of software, however.

The backup or restore process doesn’t necessarily back up or restore the certificate needed to work with the encrypted data. The user’s profile data contains that certificate. If the user’s account exists and the profile still contains the necessary certificate, the user can still work with the encrypted data.

If the user’s account exists and you previously backed up the user’s profile and then restored the profile to recover a deleted certificate, the user can still work with the encrypted data. Otherwise, there’s no way to work with the data, and you need to have a designated recovery agent access the files, and then remove the encryption.

Being able to back up and restore certificates is an important part of any disasterrecovery* plan. The next sections examine the techniques you can use to perform these tasks.

Оглавление книги

Оглавление статьи/книги

Генерация: 1.045. Запросов К БД/Cache: 3 / 1
поделиться
Вверх Вниз