When trying to configure the mail flow rule to encrypt external email, there is no RMS template in the dropdown menu

Frogworks
Frogworks used Ask the Experts™
on
We are trying to enable encryption on a clients Office365 tenant, but I am running into a wall that MS support have been able to help with. When trying to configure the mail flow rule to encrypt external email, there is no RMS template in the dropdown menu to select them. Azure Information Protection has already been enabled (so the old OME settings will not work), but the section for changing the RMS templates is not where the article that MS sent me said it would be. Does anyone know how to add an RMS template to the tenant?

No RMS in the rule settings
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Adam BrownSenior Systems Admin
Top Expert 2010

Commented:
Make sure you go through all the steps here: https://acbrownit.com/2018/05/25/enabling-message-encryption-in-office-365/

If you have, go into the Azure Information Protection settings in the Azure Portal (Not office 365) to make sure there are valid Rights Management Templates available in there. Note that enabling Azure Information Protection *can* take some time to apply in the tenant.

Author

Commented:
I have done all of these steps, but the OME defaults aren't showing up when I go to apply the RMS in a mail flow rule. The settings have been in place for well over a week now.

Does every user need to have the license for this to work?
Adam BrownSenior Systems Admin
Top Expert 2010

Commented:
No. The users only need to be licensed for the rule to apply to their messages. You may also need to have your own mailbox licensed for the rules to show up. Check the settings in Azure Information Protection through the azure portal (portal.azure.com) and make sure the settings haven't been monkeyed with. If you haven't disabled and re-enabled AIP on your tenant, you may want to try that as well.

Author

Commented:
I did adjust the settings when trying to initially set things up (following an article by MS), and I have tried to deactivate and then reactivate AIP.

Is there a way to reset the entire tenant to default and start from scratch to ensure I didn't do something wrong?
This appeared to be an error on the MS side that they have not been able to correct thus far. We are working with them to resolve.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial