Understanding Prerequisites and Limitations of AD RMS
It is important to understand first what AD RMS can and can’t do in a SharePoint environment. The following key facts are important:
• AD RMS does not encrypt files in storage. Instead, the AD RMS rights policies are enforced only when the document is pulled out of the document library. This allows SharePoint indexing to be able to index the documents. If storage-level encryption is required, a technology such as SQL TDE, covered earlier in this chapter, is required.
• You can only establish one rights policy per document library and, once established, those policies apply to all documents, both existing and new documents in the library.
• The rights policies in SharePoint document libraries ...
Get Microsoft SharePoint 2010 Unleashed now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
