Windows azure active directory rights management

Applies to : Azure Information Protection , Office Relevant for : AIP unified labeling client and classic client. To provide a unified and streamlined customer experience, the Azure Information Protection classic client and Label Management in the Azure Portal are deprecated as of March 31, No further support is provided for the classic client and maintenance versions will no longer be released. The classic client will be officially retired, and will stop functioning, on March 31, All current Azure Information Protection classic client customers must migrate to the Microsoft Information Protection unified labeling platform and upgrade to the unified labeling client.

Learn more in our migration blog. Azure RMS helps to protect files and emails across multiple devices, including phones, tablets, and PCs by using encryption, identity, and authorization policies. For example, when employees email a document to a partner company, or save a document to their cloud drive, Azure RMS's persistent protection helps secure the data.

Protection settings remain with your data , even when it leaves your organization's boundaries, keeping your content protected both within and outside your organization. Azure RMS may be legally required for compliance, legal discovery requirements, or best practices for information management.

Azure RMS ensures that authorized people and services, such as search and indexing, can continue to read and inspect the protected data.

Ensuring ongoing access for authorized people and services, also known as "reasoning over data", is a crucial element in maintaining control of your organization's data. This capability may not be easily accomplished with other information protection solutions that use peer-to-peer encryption.

Attaching protected files, rather than protecting an entire email message, enables you to keep the email text un-encrypted. For example, you may want to include instructions for first-time use if the email is being sent outside your organization.

If you attach a protected file, the basic instructions can be read by anyone, but only authorized users will be able to open the document, even if the email or document is forwarded to other people. Azure RMS provides the following features to support IT departments and infrastructure organizations:. Organizations always have the choice to stop using the Azure Rights Management service without losing access to content that was previously protected by Azure Rights Management. For more information, see Decommissioning and deactivating Azure Rights Management.

Customized protection templates provide a quick and easy solution for administrators to apply policies, and for users to apply the correct level of protection for each document and restrict access to people inside your organization. For example, for a company-wide strategy paper to be shared with all employees, apply a read-only policy to all internal employees.

To learn more about overriding the proxy settings, see Proxy Configuration documentation. Reset IIS, for example, by running iisreset as an administrator from a command prompt. Skip to main content. This browser is no longer supported. Download Microsoft Edge More info. Contents Exit focus mode. Please rate your experience Yes No. Any additional feedback? Note To provide a unified and streamlined customer experience, the Azure Information Protection classic client and Label Management in the Azure Portal are deprecated as of March 31, Important Be sure to read and configure the prerequisites before you install the mobile device extension.

Note To learn more about overriding the proxy settings, see Proxy Configuration documentation. Submit and view feedback for This product This page. View all page feedback. In this article. Active Directory Federation Services Overview. AD RMS can be used to augment the security strategy for your organization by protecting documents using information rights management IRM.

AD RMS allows individuals and administrators through IRM policies to specify access permissions to documents, workbooks, and presentations. This helps prevent sensitive information from being printed, forwarded, or copied by unauthorized people. After permission for a file has been restricted by using IRM, the access and usage restrictions are enforced no matter where the information is, because the permission to a file is stored in the document file itself.

They also help organizations enforce corporate policy governing the control and dissemination of confidential or proprietary information. Persistent usage policies, which remain with the information, no matter where it is moved, sent or forwarded.

An additional layer of privacy to protect sensitive information —such as financial reports, product specifications, customer data, and confidential e-mail messages—from intentionally or accidentally getting into the wrong hands.

Prevent an authorized recipient of restricted content from forwarding, copying, modifying, printing, faxing, or pasting the content for unauthorized use.