This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(220.8, 32%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hello, we have a SharePoint site containing a library that has IRM protection, so the files are all protected.
We have an application that needs to access said files, to read them and extract data from them. We usually did that using the SharePoint REST APIs and client-side object models (CSOM) but when trying that with the IRM protected files, we are getting a sort of a hash of the file, rather the file itself.
Our Azure application has the super_user delegated permission, but that does not seem sufficient.
We are currently exploring another option which would be to download the file with SharePoint REST APIs and client-side object models (CSOM) and then decrypt it using the MIP Protection SDK, but is this approach correct? I am doubtful whether the Microsoft Graph API is actually getting the encrypted file or just a random hash, and whether the MIP Protection SDK is capable of decrypting SharePoint IRM protected files.