eAlladin eToken Format utility, 681
Effective Permissions, 360–61
EFS file sharing, 653–55
enabling, 654
functioning of, 655
setting up, 654
support, 653
See also Encrypting File System (EFS)
Emergency Repair Disk (ERD), 56
Encrypting File System (EFS), 643–67
alternatives, 666–67
certificates, 649
certificate templates, 649
cryptographic changes, 659
data recovery policy definition, 661
date recovery, 650–52
decryption illustration, 646
defined, 643
disabling, 660
encryption for offline files/folders, 658
encryption illustration, 645
end user experience, 643–44
features, 653–62
internals, 645–50
offline files/folders support, 657–59
operation fault tolerance, 648
recovery, authorized, 662–66
recovery agent setup, 651
recovery certificates, 650
recovery changes, 660–62
recovery GPO settings, 651
WebDAV integration, 655–56
Web folder integration, 655–57
Windows 2000, 653
See also EFS file sharing; PKI-enabled applications (PKA)
Encryption
EFS illustration, 645
file, products, 666
Kerberos types, 181
for offline files/folders, 658
Enhanced Security Services (ESS), 675–78
Enrollment interfaces, 557–63
command line, 558
GUI, 557–58
scripted enrollment options for, 560–63
scripting, 559
Web, 557, 559–60
See also Certificate enrollment
Enterprise Admins group, 376
Enterprise Trust container, 519–20
Error messages, Kerberos, 197–99
eToken Format utility, 681
Eventcombmt tool, 718
Event logging
authentication-related, 126–30
registry hacks, 715
registry hacks recommended settings, 716
SRP, 400
Event Logs, 712–16
files, 714, 715
properties, 714
tools, 719–20
Event Viewer, 712–16
defined, 713
locating, 713
Exchange
Advanced Security, 670
KMS database, migrating, 576–79
S/MIME configuration in, 671
Exclusion lists, 435
Extended Key Usage (EKU), 518
Extended rights
examples, 352
setting authorization with, 350–54
types, 352
Windows Server 2003, 353
Extending SSO, 314–18
to cover different applications, 317–18
to cover different organizations, 314–17
See also Single sign-on (SSO)
Extensible Resource Provisioning Management (XRPM), 17
eXtensible Rights Markup Language (XrML), 430–32
defined, 430–31
license example, 432
licenses, 430
license usage policy, 431
Extranet access management systems (EAMS), 8, 12, 18–21
centralized security management, 18
central policy engine, 19
decouple authorization decision making, 18
defined, 18
future extension, 19
software product categories, 20
vendors, 20