Share via

'Element not Found' when using EFS on Windows 2008

shockoMS 281 Reputation points
2021-04-19T21:44:17.55+00:00

Our PKI is Windows 2016 with ADDS forest/domain functional level at 2008 R2. When attempting to encrypt a file on a Domain joined Windows 2008 (not R2!) machine we received the following:

'Element not found'

Our recovery agent is in place and we have no issues on Windows 2008R2 or above. From troubleshooting this only occurs is KSP is used as the cryptographic provider in the PKI template. If we use the legacy provider in the template the file encrypts without issues.

Windows for business | Windows Server | User experience | Other

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2021-04-20T06:08:47.593+00:00

    Hello @shockoMS ,

    Thank you for posting here.

    From the following link, we can see in Windows 2008, EFS use a CAPI Cryptographic Service Provider (CSP).

    89375-cc1.png

    For more information, we can refer to link below.

    Cryptography Next Generation
    https://learn.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/cc730763(v=ws.10)?redirectedfrom=MSDN

    Hope the information above is helpful.

    Should you have any question or concern, please feel free to let us know.

    Best Regards,
    Daisy Zhou

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.