Data Recovery Agent

What Does Data Recovery Agent Mean?

A data recovery agent (DRA) is an individual who decrypts data that’s encrypted by other users on a Windows operating system. Data recovery agents are assigned and authorized Windows users who can decrypt any or all users’ data, typically in case of disaster, emergency or a system crash.


Techopedia Explains Data Recovery Agent

DRA is primarily used in enterprise networking environments with many different end user workstations managed centrally through a Windows Server. Generally, the role of DRA is performed by the network/system administrator. Typically, the DRA is defined and configured at each domain, network or at machine level within Windows Group Policy and Active Directory.

Except in Windows 2000, where the local administrator is the default DRA, Windows XP, Windows, Windows Server 2003 and above all require the administrator to create a recovery agent certificate/smart card certificates or public key. The recovery agent certificate/key must be created prior to data encryption or the data cannot be decrypted by the DRA.


Related Terms

Latest Backup and Recovery Terms

Related Reading

Margaret Rouse

Margaret Rouse is an award-winning technical writer and teacher known for her ability to explain complex technical subjects to a non-technical, business audience. Over the past twenty years her explanations have appeared on TechTarget websites and she's been cited as an authority in articles by the New York Times, Time Magazine, USA Today, ZDNet, PC Magazine and Discovery Magazine.Margaret's idea of a fun day is helping IT and business professionals learn to speak each other’s highly specialized languages. If you have a suggestion for a new definition or how to improve a technical explanation, please email Margaret or contact her…