This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 84%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
Hello,
I'm testing the implementation of OME in our organization, and I have a question:
Sending a word/excel attachment in an encrypted email to a recipient with no Microsoft 365 subscription, results in recipient not able to open the file. The preview function in the browser for viewing the encrypted message is able to view the file, but downloading and trying to open/edit the file fails. Opening a excel file in XLS viewer or older local office version triggers RMS saying he doesn't have persmission to the document.
Is this by design, or am I doing something wrong? What are the requirements for sending OME encrypted office-file attachments to external recipients?
Microsoft on-premises server product that runs Office Online.
The administration and maintenance of Microsoft Exchange Server to ensure secure, reliable, and efficient email and collaboration services across an organization.
Answer accepted by question author
This is by design, as protection is embedded in the file itself. If you want them to be able to download attachments in unencrypted form, use the configuration detailed here: https://techcommunity.microsoft.com/t5/microsoft-security-and/admin-control-for-attachments-now-available-in-office-365/ba-p/204007
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(284.8, 17%, 37%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EYS%3C/text%3E%3C/svg%3E)
Hi @GonWild ,
As michev said, by default the attachments in an encrypted message remain protected when downloaded. To allow recipients to download Encrypt-only attachments without encryption, please refer to the article shared by michev:
Set-IRMConfiguration - DecryptAttachmentForEncryptOnly $true
And here is another official link for your reference: To manage whether email attachments are decrypted on download from a web browser
If an Answer is helpful, please click "Accept Answer" and upvote it.
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.