Is there anything wrong with encrypting the search index with EFS while letting the search service index encrypted files? I've encrypted the directory %ProgramData%\Microsoft\Search and I've added SYSTEM user by using "cipher /ADDUSER
/certhash:"SYSTEMHASH" /s:thedirectory, and it looks like the SYSTEM account has no problem indexing my files.
However, the recommendation tells me to only index encrypted files when a full-disk encryption is used. Is this a wrong practice?
Best Answer
Read the reasoning for not just encrypting just the index in this TechNet page