In order to backup encrypted folders/files, you need to setup a Data Recovery Agent. To do this, follow the instructions below:
- If you have Administrative Tools/Local Security Policy available in your Start Menu
- Open Administrative Tools
- Open Local Security Policy
- Expand the tree to: Public Key Policies\Encrypting File System
- Right click on Encrypting File System and select Add Data Recovery Agent ...
- The Add Recovery Agent Wizard is displayed. Select Next.
- Click Browse Folders and browse to the directory where you installed the application.
- Select SYSTEM.CER and click Open
- The dialog will display Users as USER_UNKNOWN and Certificates as SYSTEM. Click Next
- Click Finish
- Close the Local Security Policy application.
- If you are on a system that does not have Administrative Tools/Local Security Policy
- From the Start menu, select Run ...
- Enter mmc and click Ok
- From the menu, select File
- Select Add/Remove Snap-in ...
- A dialog will be displayed. Click the Add ... button.
- Select Group Policy Object Editor and click Add
- The default is Local Computer. Click Finish.
- Click Close on the Add Standalone Snap-in dialog.
- Click Ok from the Add/Remove Snap-in dialog.
- Expand the tree to: Local Computer Policy\Computer Configuration\Security Settings\Public Key Policies\Encrypting File System
- Right click on Encrypting File System and select Add Data Recovery Agent ...
- The Add Recovery Agent Wizard is displayed. Select Next.
- Click Browse Folders and browse to the directory where you installed the application.
- Select SYSTEM.CER and click Open
- The dialog will display Users as USER_UNKNOWN and Certificates as SYSTEM. Click Next
- Click Finish
- From the menu, select File and then Exit.
Any folders that your now encrypt, will be available to the SYSTEM account for backup. Folders that were encrypted prior to this procedure, will not be available to the application.