Forum Discussion
Office 365 Message Encryption: Error setting DecryptAttachmentFromPortal to $true
Well, I tried it in few tenants I have access to, no luck. It doesn't even seem to be available in the definition of the Set-IRMConfiguration cmdlet, so it's not an issue with user, permissions or licenses. Most likely another case of the documentation being ahead of the actual rollout.
I've left feedback on the documentation just in case.
- ItsNotALakeItsAnOceanDec 13, 2018Copper Contributor
Thank you very much for your reply. I've tried it in several tenants as well and luckily, it finally worked in the one where I wanted to implement it (customer). Thank you for reporting it, though. In the end, it needs to work everywhere.
- Carol BaileyDec 16, 2018Microsoft
We've just learned that DecryptAttachmentFromPortal is deprecated and instead, you should use the DecryptAttachmentForEncryptOnly parameter. The Azure Information Protection documentation has been updated with this information & I'm told the PowerShell reference documentation update is in progress.
- ItsNotALakeItsAnOceanDec 17, 2018Copper Contributor
Thank you very much for your reply, Carol Bailey. However, as far as I understand, the DecryptAttachmentForEncryptOnly parameter only makes it possible to decrypt attachments for users with an Azure AD account. What's the proper solution if I were to send an encrypted email to a GMail user? After downloading the attachments, he won't be able to open them since he can't authenticate, right? If that's the case, it would be a huge step back for many customers I am in contact with. Or maybe I am missing a point here and you can make me a merry christmas by clarifying this point. ;-)