A、Designate a data recovery agent and issue an EFS certificate to the data recovery agent. Export the private key and restrict access to the exported key
B、Make the data recovery agent a local administrator on all client computers
C、Remove the default data recovery agent from the Default Domain Policy GPO. Then, include the new data recovery agent instead
D、Delete the Default Domain Policy GPO. Configure a new GPO linked to the domain that does not specify a data recovery agent