Skip to main content
All CollectionsKnowledge BaseEndpoint and SaaS AppsTroubleshooting - Endpoint and SaaS Apps
Endpoint Client backup with encryption enabled fails
Endpoint Client backup with encryption enabled fails
Updated over 10 months ago

Problem description

inSync Endpoint Client backup with encryption enabled fails to complete

Cause

Windows EFS Recovery certificate may have expired or not available on the machine due to some reason like machine re-image.

๐Ÿ“ Note
โ€‹Druva inSync uses Encryption File System (EFS), a feature of Windows, to encrypt and decrypt data on your Windows laptops and desktopsDruva inSync does not backup the EFS keys used for encryption by Windows.Druva inSync does not backup data in encrypted format from Windows laptops and desktops.. Data is decrypted in plain text format and then backed up.

Traceback

[2021-07-08 10:00:09,180] [ERROR] Encrypting: \\?\C:\Users\1364\Desktop\gratutiy letter.doc Got Error: (6012, 'EncryptFile', 'Recovery policy configured for this system contains invalid recovery certificate.')

Resolution

Either renew the existing certificates or generate new certificates for the EFS recovery agents and reapply the recovery agent policy with those certificates.

See also

https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2003/cc738530(v=ws.10)?redirectedfrom=MSDN

http://www.experts-exchange.com/OS/Q_22037271.html

https://docs.druva.com/001_inSync_Cloud/Cloud/030_Governance_DLP/020_Data_Loss_Prevention/Data_Loss_Prevention/010_Enabl_data_encryption

Related Articles
Enable data encryption
Encryption File System (EFS) FAQs
How to decrypt files in bulk when device is disabled or inSync Client is uninstalled
Unable to Access Encrypted files
inSync client stops backup of the encrypted files
Did this answer your question?