From Windows 2000 onwards on supported editions, a native encryption tool named Encrypting File System (EFS), allows you to securely encrypt files and folders, thus keep them safe from unauthorized access. This also means that other users sharing your PC, can do the very same and encrypt as many files as they please. As such, In this tutorial, I will show you how to securely disable EFS In Windows 10.
Before I begin, here's what I'm referring to. When you encrypt a file or folder using the Windows built-In Encrypting File System tool, It's Identified as such (encrypted), by the green text In the file/folder name as per the Image below.
The problem Is, If other users have encrypted your files & folders and your user account password Is reset (Intentional or otherwise), you'll lose access to every EFS encrypted file & folder on your computer. The same applies If the EFS file encryption certificate and key corrupts.
If you do not Intend to utilize the Encrypting File System and want It disabled altogether, I will demonstrate how to do this, by using the Windows built-In Local Security Policy. Do note, that EFS Is only supported In Windows 10 Pro, Enterprise and Education editions. So without further delay, let's rip Into this tutorial.
Step One:To access the Local Security Policy, open the Run menu, enter secpol.msc and hit OK.
Step Two:Next, navigate to the following directory.
Security Settings -> Public Key Policies -> Encrypting File System
Then right-click on Encrypting File System, and hit Properties.