encryption & decryption access denied error

Discussion in 'Windows XP Help and Support' started by denrecnoc, Apr 21, 2014.

  1. denrecnoc

    denrecnoc

    Joined:
    Mar 26, 2014
    Messages:
    32
    Likes Received:
    0
    Here's a problem, perhaps someone here in the forum might have knowledge of or links to relevant information.

    While trying to encrypt or decrypt files and folders an Access Denied error is produced.

    However, if files and folders, previously encrypted, are copied to a FAT partition the files and folders are decrypted.

    I have tried resetting effective permissions for Users, Groups and Security Principals, from the Administrator account and the original user Admin account without any success.

    The problem occurs while trying to encrypt or decrypt from the Windows Explorer as well as Cipher.exe.
     
    denrecnoc, Apr 21, 2014
    #1
    1. Advertisements

  2. denrecnoc

    Elizabeth23

    Joined:
    Dec 10, 2012
    Messages:
    5,381
    Likes Received:
    503
    Location:
    Florida
    http://support.microsoft.com/kb/308993

    the quote is from the link above, since you are familiar with microsoft support knowledge base, have you seen this already??

    are you the user who encrypted the files originally??

    ================

    from here
     
    Elizabeth23, Apr 22, 2014
    #2
    1. Advertisements

  3. denrecnoc

    denrecnoc

    Joined:
    Mar 26, 2014
    Messages:
    32
    Likes Received:
    0
    The primary problem is with encryption and secondarily decryption.

    Logged on as the original administrator's user account that the files and folder were encrypted no files and folders can be encrypted or decrypted. However, using the original keys, encrypted files can be decrypted by copying to a fat partition.

    I have read various articles including the one you have a link to.

    New keys were created in case the old keys somehow became corrupted, but this did not solve the current problem. When a user creates new keys, past encrypted files can no longer be accessed unless a Recovery Agent was created using the old keys.

    Recovering old encrypted files is not what I am trying to accomplish.

    In order to decrypt files, encryption needs to be first working, so there are no access denied errors during encryption.
     
    denrecnoc, Apr 22, 2014
    #3
  4. denrecnoc

    denrecnoc

    Joined:
    Mar 26, 2014
    Messages:
    32
    Likes Received:
    0
    Disregard any comments from the previous post about encryption keys ... new encryption keys can be made for the current user running cipher using the /k switch.

    The user should still have access previously encrypted files created from the old keys. I am still looking into this. The last time I used cipher.exe was years ago, my memory is still a bit hazy on some of the details.

    Here is an article explaining some of the uses for cipher.exe and what things it is able to do that can't be done from the GUI.

    http://www.techrepublic.com/article/use-cipherexe-for-command-line-encryption/
     
    denrecnoc, Apr 22, 2014
    #4
  5. denrecnoc

    Elizabeth23

    Joined:
    Dec 10, 2012
    Messages:
    5,381
    Likes Received:
    503
    Location:
    Florida
    Elizabeth23, Apr 22, 2014
    #5
  6. denrecnoc

    denrecnoc

    Joined:
    Mar 26, 2014
    Messages:
    32
    Likes Received:
    0
    Well I guess I should. However, over the years I found many computer problems are the result of making simple problems more technical.
     
    denrecnoc, Apr 22, 2014
    #6
  7. denrecnoc

    denrecnoc

    Joined:
    Mar 26, 2014
    Messages:
    32
    Likes Received:
    0
    I forgot to mention in my original post.

    Possibly the file access error is related to DEP. (Data Execution Prevention) ?

    Another problem the OS is having.

    No matter how DEP is configured, either through the control panel > system or editing the boot.ini file. DEP defaults to.

    DataExecutionPrevention_Available = TRUE

    DataExecutionPrevention_SupportPolicy = 2

    I have tried reconfiguring dep by editing the boot.ini file, each time DEP defaults to the above settings.

    http://support.microsoft.com/kb/912923/en-us

    http://support.microsoft.com/kb/875352

    http://support.microsoft.com/kb/833721

    http://msdn.microsoft.com/en-us/library/windows/hardware/ff542248(v=vs.85).aspx
     
    denrecnoc, Apr 22, 2014
    #7
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.