All
you need to know about compression and encryption for Exam
70-210
A quick primer on subjects covered for the Windows 2000
Professional MCSE exam. Includes rules for moving and copying
compressed and encrypted file and folders. Source: Swynk.com
Encrypting Files in Windows 2000
Microsoft Knowledge Base Article: 222054 - Windows 2000 includes the Encrypting File Service (EFS) that you can use to encrypt files and folders directly on the storage media, either locally or
Hardening
EFS
Win2K's Encryption File System (EFS) provides users with a
simple, transparent way to encrypt files. But before enabling
this feature, make sure to set up and troubleshoot the backend
key-management and -recovery infrastructure. Source: Information
Security Magazine (Feb 2000)
How to Back Up Your Encrypting File System Private Key
Microsoft Knowledge Base Article: 241201 - This article describes how to back up your Encrypting File System (EFS) private key so that you can recover encrypted data in the event that you lose the copy on your computer.
HOW TO: Configure a Domain EFS Recovery Policy
Microsoft Knowledge Base Article: 313365 - This step-by-step article describes how to configure a domain Encrypting File System (EFS) recovery policy.
How to Disable/Enable EFS on a Stand-Alone Windows 2000-Based Computer
Microsoft Knowledge Base Article: 243035 - Describes how to disable and enable the Encrypting File System (EFS) on Windows 2000-based computers that are not members of a Windows 2000
HOW TO: Disable EFS for All Computers in a Windows 2000-Based Domain
Microsoft Knowledge Base Article: 222022 - Microsoft Windows 2000 includes an encryption tool called Encrypting File System (EFS). Clients can use this tool to protect files by encrypting them. However, it is possible that in some environments, an administrator may want to prevent
users from encrypting data on their workstations. An
administrator can do so for domain clients by modifying a
controlling group policy object (GPO) or locally with a local
GPO.
HOW TO: Disable/Enable EFS on a Stand-Alone Windows 2000-Based Computer
Microsoft Knowledge Base Article: 243035 - This article describes how to disable and enable the Encrypting File System (EFS) on Windows 2000-based computers that are not members of a Windows 2000-based domain. EFS is designed to work only when a recovery agent is available before
a file can be encrypted. By default, the local Administrator
account is used as the designated recovery agent for stand-alone
Windows 2000-based computers
How to Enable the Encryption Command on the Shortcut Menu
Microsoft Knowledge Base Article: 241121 - This article describes how to add the Encrypt/Decrypt command to the shortcut menu that appears when you right-click a file or folder.
How to Encrypt Data Using EFS in Windows 2000
Microsoft Knowledge Base Article: 230520 - Describes how to encrypt data using the Encrypting File System (EFS) in Windows 2000.
How to Prevent Files from Being Encrypted When Copied to a Server
Microsoft Knowledge Base Article: 302093 - You may want to have files in an encrypted state by using the Windows 2000 Encrypting File System (EFS) feature, such as on a laptop computer, while still having the ability to copy these files in an unencrypted state to a central server to
to share with other users. This article describes how to cause
encrypted files that are copied to a particular Windows
2000-based computer to be stored on that computer in an
unencrypted state.
HOW TO: Reinitialize the EDRP on a Workgroup Computer Running Windows 2000
Microsoft Knowledge Base Article: 257705 - This article describes how to reinitialize the local recovery policy on a Windows 2000-based computer. This process does not reinitialize a domain recovery policy. For Windows 2000-based domain members, the local recovery policy is superseded by the domain recovery policy. HOW TO: Set Up EFS for Secure Access to Data on a File Server or an Intranet in Windows 2000
Microsoft Knowledge Base Article: 301395 - This step-by-step article describes how to configure Encrypting File System (EFS) to provide core file encryption technology when you store files on an NTFS file system partition. You can use EFS to encrypt and decrypt files to keep your
files safe from intruders who might gain unauthorized physical
access to your sensitive, stored data (for example, if your
laptop or external disk drive is stolen).
The hidden dangers of Encrypting File System
Options abound, as do potential pitfalls, so this Hot Tip deals with what could turn out to be a whopper if you are not paying close attention. Source: Trainability.com
Third-Party Certificate Authority Support for Encrypting File System
Microsoft Knowledge Base Article: 273856 - Describes how Windows 2000 supports third-party Certificate Authorities (CAs) that issue Encrypting File System (EFS) certificates and EFS Recovery Agent certificates.
Using a Certificate Authority for the Encrypting File Service
Microsoft Knowledge Base Article: 223338 - The Encrypting File System (EFS) is a feature of Windows 2000 that allows users to encrypt data directly on volumes that use the NTFS file system. It operates by using certificates based on the X.509 standard. If no Certificate Authority (CA)
is available from which to request certificates, the EFS
subsystem automatically generates its own self-signed
certificates for users and default recovery agents.
Windows 2000 EFS (Encrypting File System) Potential Issues
List of potential issues regarding Stanford's deployment of Windows 2000 EFS.
Source: Stanford.edu |