- First enable Windows Azure RMS on Office 365 level – see Office 365 – Use Right Management Services. RMS is a shared service which can be used by Exchange Online and SharePoint Online and needs to be enabled at tenant level. It is not default enabled.
- Next Set up Information Rights Management (IRM) in SharePoint admin center (Office 365). If you get an error here saying “Error: RMS Online is not enabled for this tenant, please contact Office 365 to enable.” – you probably forgot step 1.
- Finally configure Rights Management on specific Document Libraries in SharePoint Online.
|SharePoint Permissions||IRM Permissions|
|Manage Permissions |
|Full control of the documents. This allows the user to read, edit, copy, save and modify permission of the document|
|Edit List Items |
Add and customize pages
|Edit, copy and save permissions. The user can print the document only if the document library IRM settings are configured to allow document printing|
|View List Item||Read permissions. The user can read the document but not copy or edit its content. The user can print the document only if the document library IRM settings are configured to allow document printing|
|All other permissions||Not applicable, no corresponding IRM permissions|
Before you start implementing IRM in SharePoint Online you should carefully plan for it and define specific usage scenario’s for it since it is not meant to be activated on all information in discriminatory – ask yourself some of the following questions:
- Which business areas use sensitive information which is frequently exchanged?
- What needs to be protected (Office documents, e-mails, CAD design drawings, etc ..)
- How will security policies by applied and how will enforce and control that procedures are being followed.
- What’s new with Information Rights Management in SharePoint and SharePoint Online
- Apply Information Rights Management to a list or library (SharePoint 2013 and SharePoint Online)