Orndnerverschlüsseln auf XP

Mal ne dumme Frage: Wie geht das?
Also so, dass man ihn nicht ohne Passwort öffnen kann.
Danke für jede Hilfe
Robby

 

s personal private key is used. However, recovery certificates and keys are not bound to a specific user. Anyone who has access to a DRA\'s private key can import that key and use it to decrypt any files for which the DRA is a recovery agent. Therefore, it is extremely important to protect exported private keys by using strong passwords and physically secure storage.
Exporting Certificates and Keys
You can use the Certificate Export wizard to export a certificate and private key to a removable medium. The same process is used to export any certificate.

To export a certificate
Open the Certificates snap-in, and then expand the Personal folder.
Double-click Certificates, and then right-click the certificate you want to export.
Select All Tasks, and then select Export.
Select Yes, export the private key.
The export format is PCKS #12. You have the option of deleting the private key or leaving it on the computer. If you are backing up an EFS certificate and keys, you might want to leave the private key on the computer so that you can decrypt your files without importing the private key. If you are backing up a file recovery certificate and keys, it is best if you delete the private key after the export. The private key is only needed for disaster recovery, and files are more secure if the private key is removed.

Select an option, and then click Next.
Enter a password to protect your exported private key. It is best if you use a strong password.
Click Next.
Enter a file name for the exported certificate and private key.
Click Next, review the final information, and then click Finish.
The export file has a .pfx extension.

Importing Certificates
The same process is used to import either an EFS certificate or a File Recovery certificate.

To import a certificate
Open the Certificates snap-in, and then expand the Personal folder.
Right-click the Certificates folder, click All Tasks and click Import.
This starts the Certificate Import Wizard. You can also start this wizard by double-clicking a certificate file.

In the dialog box, enter the name of your certificate file.
Enter the password that protects the private key. This password was created during export. You have the option of protecting the imported private key by using the same password. If you enable this option, you will be prompted to enter this password when you attempt to open an encrypted file.
Note

Enabling the option to protect the imported private key adds another layer of protection. However, if the password needed to open the file is forgotten, you will not be able to open the files. A designated data recovery agent would have to import the file recovery private key and open the file.
You also have the option of marking the key as exportable. If you are importing from a backup copy of your keys and plan to keep the backup copy, it is best not to select this option. This prevents an attacker from exporting your EFS private key.

Designate a location for the certificate. The default location is the personal certificate store.

J2x