question

JorgSmash-8604 avatar image
0 Votes"
JorgSmash-8604 asked DaisyZhou-MSFT commented

Windows Changed my PFX certificate - Old certificate will not import

Windows 10 Pro
Version 2004
Build 19041.928

Hey guys. This is the second time my Windows machine has decided to change my PFX certificate on me without asking/warning. I have an external HDD with files that are encrypted with a PFX file that I created in 2018. About 6 months or so ago, I couldn't access any of my files. Digging into the issue, Windows had switched my PFX certificate to a new one that I never generated. I guess the system generated it on its own. I was able to restore my old PFX certificate and access the files again. (Thank you backups!!!)

Fast forward to today. It has happened again. My Windows system has switched to a new PFX file that was generated last month. I still have my old PFX certificate, but now I am getting an error when trying to import it. I can no longer access my encrypted files.

Here are some screenshots of my issues:

93598-screen-shot-2021-05-04-at-113739-am.png
93635-screen-shot-2021-05-04-at-113557-am.png93664-screen-shot-2021-05-04-at-113719-am.png


windows-server-security
· 2
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Hello @JorgSmash-8604,
How are things going on your end? Please keep me posted on this issue.
If you have any further questions or concerns about this question, please let us know.
I appreciate your time and efforts.

Best Regards,
Daisy Zhou

0 Votes 0 ·

Hello @JorgSmash-8604,
I just want to confirm the current situations.
Please feel free to let us know if you need further assistance.


Best Regards,
Daisy Zhou


============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.

0 Votes 0 ·

1 Answer

DaisyZhou-MSFT avatar image
0 Votes"
DaisyZhou-MSFT answered

Hello @JorgSmash-8604,

Thank you for posting here.

To better understand your question, please confirm the following information at your convenience.
1.Is the issuer "Leona" your internal Windows CA server?

2.Are your certificates (old cert and new cert) all self-signed certificates? If so, how did you generate old cert?

Tip: Self-signed certificate means Leona issues cert to Leona.

3.Does the issue occur on the same client or difference clients?

4.Please confirm to whom are the new and old certificates issued?

For example:
93756-cer1.png

5.Based on "Fast forward to today. It has happened again. My Windows system has switched to a new PFX file that was generated last month.", where is this new certificate installed when you find it (Machine store or User store or other location)?
93821-cer2.png


6.What account did you use to log on this Windows client? Leona or other account?
93738-cer4.png

7.Could you import this new certificate into User store as below?
93757-cer3.png



Should you have any question or concern, please feel free to let us know.


Best Regards,
Daisy Zhou


============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.




cer1.png (25.2 KiB)
cer2.png (53.0 KiB)
cer3.png (26.2 KiB)
cer4.png (13.4 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.