Decrypt the RMS protected external mail for DLP inspect. RRS feed

  • Question

  • Hi,

    I am looking for an option to decrypt the mail and attachment by a service before reaching to DLP, so that DLP can inspect the content and again encrypt with RMS through another set of Exchange servers (Transport rule) and pass it for next hop of SMTP gateway / Internet.

    Purpose is that we wanted Azure information protection to automatically classify and protect based on the sensitivity of the content in mails and files, but at the same time if that's shared to an authorized external recipient Symantec DLP has to inspect and ensure that it can be released or else keep it in the quarantine of mail gateway and notify to the user.

    Any input to this is highly appreciated.


    Shiju C

    Thanks, Shiju

    Thursday, January 4, 2018 1:29 PM

All replies

  • Hi Shiju - this sound like you need to use the super user feature: https://docs.microsoft.com/en-us/information-protection/deploy-use/configure-super-users

    Sunday, January 7, 2018 2:10 AM
  • Thanks Carol. For mails how this can be achieved?, another set of exchange and transport rules should be used?. I am looking for an automated way of decrypting the mails and passing to the next SMTP hop and not sure how to achieve it.

    Thanks, Shiju

    Monday, January 8, 2018 2:12 PM