Skip navigation

JSI Tip 4345. Windows XP clients can encrypt data without a Recovery Agent?

Windows XP clients can encrypt files and folders without a recovery agent.

This feature means that an administrator cannot decrypt the file without the users credentials.

To prevent this from occurring on your network, apply the following .reg file to each Windows XP computer:

Windows Registry Editor Version 5.00

\[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\EFS\]

\[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows NT\CurrentVersion\EFS\]

Hide comments


  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.