Long story short, I have some configuration file for a tool containing sensitive information and the client want them encrypted. I want to use EFS for this, but there is a problem : the account doing the installation (and so the encryption) can not be the same running the tool (the why are not important at this point), so here is my question :
Is there a way to transfer a certificate used for decryption from a user to another on the same computer on windows server 2012 ?
Thanks in advance
Best Answer
The easiest way to do what you want it probably to make use of the Encrypted File Sharing option present for EFS-encrypted files.
Alternately, yes, it is possible to "share" a user's EFS certificate with another user - by copying it between the users' personal certificate stores.