THE INFORMATION IN THIS ARTICLE APPLIES TO:
- EFT Server (all versions)
When encrypting files using Microsoft Encrypting File System (EFS), an error message appears:
"Recovery policy configured for this system contains invalid recovery certificate"
- or -
The Encrypting File System (EFS) recovery policy contains one or more EFS recovery agent certificates that have expired or do not exist. Expired certificates cannot be used.
Either renew the existing certificates or generate new certificates for the EFS recovery agents and reapply the recovery agent policy with those certificates.
For more information, refer to the Microsoft TechNet article, "Requesting Certificates":