Clear MIP credentials.
Here's a list of common problems with MIP PDF files and troubleshooting steps to resolve the issues.
Troubleshooting issues with opening PDF files protected by MIP
-
Märkus.
See the steps to clear MIP credentials in the section How to download Acrobat debugging and customization tools.
-
Check the integrity level of the Microsoft folder.
-
Right-click the Microsoft folder and navigate to the Security tab.
-
Select the Advanced option.
-
Ensure that the Integrity level is set to "Low Mandatory" as depicted in the screenshot.
-
Perform the following steps if the integrity isn't at "Low Mandatory Level."
-
Open the command prompt.
-
Run the command icacls <fullpath> /setintegritylevel L (where <fullpath> is “C:\Users\<username>\AppData\LocalLow\Microsoft”).
-
-
-
Run the workflow again to verify the change.
AADSTS50020: User account 'user@domain.com' from the identity provider (IdentityProviderURL) does not exist in the tenant (ResourceTenantName). It cannot access the application 'cad2910c-3b55-4610-ba7e-dda581063c91'(Adobe Acrobat Reader) in that tenant. The account must be added as an external user in the tenant first. Sign out and sign in again with a different Azure Active Directory user account.
-
Set both bEnablePolicyAuthentication and bShowDMB to 0 under the “MicrosoftAIP” section. After enabling the registry, users won't see the applied MIP label on the current file. The bEnablePolicyAuthentication disables authentication in Azure AD.
-
See Error AADSTS50020 - User account from identity provider does not exist in tenant for more troubleshooting tips.
Try the following steps.
-
Close Acrobat or Reader.
-
Ascertain if the issue occurred when the Sandbox was enabled or disabled.
-
Clear MIP credentials, and then reopen the file to verify.
Märkus.See the steps to clear MIP credentials in the section How to download Acrobat debugging and customization tools.
-
If the issue continues, contact Adobe.
Share the following details with MIP developers:- Acrobat and MIP version.
- Are you facing the issue when Sandbox is disabled or enabled?
- Enable MIP logging.
- Share the logs from “%APPDATA%\..\LocalLow\Microsoft\RMSLocalStorage” and “%APPDATA%\..\Local\Microsoft\RMSLocalStorage".
- Share the fiddler logs.
- Attach the video of the workflow for better clarity.
Plug-in related questions
-
Download and install fiddler tool from the location https://www.telerik.com/download/fiddler.
-
Open Fiddler.
-
Go to File > Capture Traffic and enable the option to capture traffic. Alternatively, press the F12 key.
-
Navigate to Tools > Options > HTTPS > Decrypt HTTPS traffic, and enable HTTP Decryption.
-
Launch Acrobat, and open the MIP protected file.
-
Share the Fiddler logs.
-
Open Acrobat, and go to Edit > Preferences. Alternatively, press Ctrl+K.
-
From categories, select Security (Enhanced).
-
Deselect (or select if earlier deselected) the option Enable Protected Mode at startup (Preview).
-
Select Yes, and then select OK to confirm.
-
Relaunch Acrobat to apply the changes.
Key: Computer\HKEY_CURRENT_USER\SOFTWARE\Adobe\<product>\<track>\MicrosoftAIP
Value: bEnableLogging
Data: 1