Lietotāja rokasgrāmata Atcelt

Manage encryption

Meklēšana
  1. Adobe Enterprise & Teams: Administration guide
  2. Plan your deployment
    1. Basic concepts
      1. Licensing
      2. Identity
      3. User management
      4. App deployment
      5. Admin Console overview
      6. Admin roles
    2. Deployment Guides
      1. Named User deployment guide
      2. SDL deployment guide
      3. Deploy Adobe Acrobat 
    3. Deploy Creative Cloud for education
      1. Deployment guide
      2. Enable Adobe Express in Google Classroom
      3. Integration with Canvas LMS
      4. Integration with Blackboard Learn
      5. Configuring SSO for District Portals and LMSs
      6. Deploy Adobe Express through Google App Licensing
      7. Add users through Roster Sync
      8. Kivuto FAQ
      9. Primary and Secondary institution eligibility guidelines
  3. Set up your organization
    1. Identity types | Overview
    2. Set up identity | Overview
    3. Set up organization with Enterprise ID
    4. Setup Azure AD federation and sync
      1. Set up SSO with Microsoft via Azure OIDC
      2. Add Azure Sync to your directory
      3. Azure Connector FAQ
    5. Set up Google Federation and sync
      1. Set up SSO with Google Federation
      2. Add Google Sync to your directory
      3. Google federation FAQ
    6. Set up organization with Microsoft ADFS
    7. Set up organization for District Portals and LMS
    8. Set up organization with other Identity providers
      1. Create a directory
      2. Verify ownership of a domain
      3. Add domains to directories
    9. SSO common questions and troubleshooting
      1. SSO Common questions
      2. SSO Troubleshooting
      3. Education common questions
  4. Manage your organization setup
    1. Manage existing domains and directories
    2. Enable automatic account creation
    3. Set up organization via directory trust
    4. Migrate to a new authentication provider 
    5. Asset settings
    6. Authentication settings
    7. Privacy and security contacts
    8. Console settings
    9. Manage encryption  
  5. Manage products and entitlements
    1. Manage users
      1. Overview
      2. Administrative roles
      3. User management techniques
        1. Manage users individually   
        2. Manage multiple users (Bulk CSV)
        3. User Sync tool (UST)
        4. Microsoft Azure Sync
        5. Google Federation Sync
      4. Change user's identity type
      5. Manage user groups
      6. Manage directory users
      7. Manage developers
      8. Migrate existing users to the Adobe Admin Console
      9. Migrate user management to the Adobe Admin Console
    2. Manage products and product profiles
      1. Manage products
      2. Manage product profiles for enterprise users
      3. Manage automatic assignment rules
      4. Review product requests
      5. Manage self-service policies
      6. Manage app integrations
      7. Manage product permissions in the Admin Console  
      8. Enable/disable services for a product profile
      9. Single App | Creative Cloud for enterprise
      10. Optional services
    3. Manage Shared Device licenses
      1. What's new
      2. Deployment guide
      3. Create packages
      4. Recover licenses
      5. Manage profiles
      6. Licensing toolkit
      7. Shared Device Licensing FAQ
  6. Manage storage and assets
    1. Storage
      1. Manage enterprise storage
      2. Adobe Creative Cloud: Update to storage
      3. Manage Adobe storage
    2. Asset migration
      1. Automated Asset Migration
      2. Automated Asset Migration FAQ  
      3. Manage transferred assets
    3. Reclaim assets from a user
    4. Student asset migration | EDU only
      1. Automatic student asset migration
      2. Migrate your assets
  7. Manage services
    1. Adobe Stock
      1. Adobe Stock credit packs for teams
      2. Adobe Stock for enterprise
      3. Use Adobe Stock for enterprise
      4. Adobe Stock License Approval
    2. Custom fonts
    3. Adobe Asset Link
      1. Overview
      2. Create user group
      3. Configure Adobe Experience Manager Assets
      4. Configure and install Adobe Asset Link
      5. Manage assets
      6. Adobe Asset Link for XD
    4. Adobe Acrobat Sign
      1. Set up Adobe Acrobat Sign for enterprise or teams
      2. Adobe Acrobat Sign - Team feature Administrator
      3. Manage Adobe Acrobat Sign on the Admin Console
    5. Creative Cloud for enterprise - free membership
      1. Overview
  8. Deploy apps and updates
    1. Overview
      1. Deploy and deliver apps and updates
      2. Plan to deploy
      3. Prepare to deploy
    2. Create packages
      1. Package apps via the Admin Console
      2. Create Named User Licensing Packages
      3. Adobe templates for packages
      4. Manage packages
      5. Manage device licenses
      6. Serial number licensing
    3. Customize packages
      1. Customize the Creative Cloud desktop app
      2. Include extensions in your package
    4. Deploy Packages 
      1. Deploy packages
      2. Deploy Adobe packages using Microsoft Intune
      3. Deploy Adobe packages with SCCM
      4. Deploy Adobe packages with ARD
      5. Install products in the Exceptions folder
      6. Uninstall Creative Cloud products
      7. Use Adobe provisioning toolkit enterprise edition
      8. Adobe Creative Cloud licensing identifiers
    5. Manage updates
      1. Change management for Adobe enterprise and teams customers
      2. Deploy updates
    6. Adobe Update Server Setup Tool (AUSST)
      1. AUSST Overview
      2. Set up the internal update server
      3. Maintain the internal update server
      4. Common use cases of AUSST   
      5. Troubleshoot the internal update server
    7. Adobe Remote Update Manager (RUM)
      1. Use Adobe Remote Update Manager
      2. Channel IDs for use with Adobe Remote Update Manager
      3. Resolve RUM errors
    8. Troubleshoot
      1. Troubleshoot Creative Cloud apps installation and uninstallation errors
      2. Query client machines to check if a package is deployed
      3. Creative Cloud package "Installation Failed" error message
    9. Create packages using Creative Cloud Packager (CC 2018 or earlier apps)
      1. About Creative Cloud Packager
      2. Creative Cloud Packager release notes
      3. Application packaging
      4. Create packages using Creative Cloud Packager
      5. Create named license packages
      6. Create packages with device licenses
      7. Create a license package
      8. Create packages with serial number licenses
      9. Packager automation
      10. Package non-Creative Cloud products
      11. Edit and save configurations
      12. Set locale at system level
  9. Manage your account
    1. Manage your Teams account
      1. Overview
      2. Update payment details
      3. Manage invoices
      4. Change contract owner
      5. Change reseller
    2. Assign licenses to a Teams user
    3. Add products and licenses
    4. Renewals
      1. Teams membership: Renewals
      2. Enterprise in VIP: Renewals and compliance
    5. Automated expiration stages for ETLA contracts
    6. Switching contract types within an existing Adobe Admin Console
    7. Purchase Request compliance
    8. Value Incentive Plan (VIP) in China
    9. VIP Select help
  10. Reports & logs
    1. Audit Log
    2. Assignment reports
    3. Content Logs
  11. Get help
    1. Contact Adobe Customer Care
    2. Support options for teams accounts
    3. Support options for enterprise accounts
    4. Support options for Experience Cloud
Piezīme.

The concepts and procedures described in this article:

  • Only apply to enterprise customers who've set up Enterprise or Federated IDs on the Admin Console.
  • Do not apply to teams customers.
  • Do not apply to Lightroom storage.

(For educational institutions only) Assets that are encrypted can't migrate to personal student accounts. See Migrate your student assets for more on student asset migration.

What’s new

Adobe is updating dedicated encryption on the Admin console from directory-level to organization-level encryption. Currently, when you enable encryption for a directory, the assets of users of that directory are encrypted. Going forward, when you enable encryption on the Admin console, assets of all users in the organization would be encrypted.

To ensure no impact to your end uses, we’re implementing this change as follows:

  • If you’re a new Adobe enterprise customer, you'll get the option to set up organization-level encryption, by default.
  • If you’ve not enabled encryption on any directories in your organization, you will get the option to set up organization-level encryption.
  • We are migrating organizations that have enabled encryption on one or more directories in a phased manner. As soon as your organization is migrated, the assets of all users will be encrypted by a dedicated encryption key.  You can, however, choose to revoke the encryption key.

Introduction

Using Creative Cloud or Document Cloud for enterprise, end users can store files safely and securely. Also, users can share files and collaborate with others. Files are accessible to users via the Creative Cloud website, Creative Cloud desktop app, and Creative Cloud mobile app. Storage is available with Creative Cloud or Document Cloud for enterprise only if it is a part of your organization's agreement with Adobe.

While all data on Creative Cloud and Document Cloud is encrypted, for extra layers of control and security, you can choose to have Adobe generate a dedicated encryption key for your organization. Content is then encrypted using standard encryption with a dedicated encryption key. If necessary, you can revoke the encryption key from the Admin Console.

Dedicated encryption keys are available only with the Creative Cloud or Document Cloud for enterprise shared services plans that include storage and services.

Before enabling dedicated encryption keys, see Adobe Creative Cloud for enterprise security overview or Adobe Document Cloud security.

To upgrade your plan to include storage and services, contact your Adobe Account Manager.

Dedicated encryption keys: Considerations

Make note of the following when working with encryption keys

  • Once you enable a dedicated encryption key, you cannot revert to using standard encryption keys.
  • You can revoke a dedicated encryption key, if necessary. If you revoke the encryption key, your users can no longer access content that has been encrypted using the encryption key. For example, if you suspect a data breach, we recommend you immediately revoke the dedicated encryption key from the Admin Console.
  • To restore access to content whose encryption key has been revoked, re-enable the encryption key from the Admin Console.
  • Dedicated encryption keys are not recommended for educational institutions. This prevent students from being able to export their content after they leave the institution.

The following data is not encrypted using the dedicated encryption key and is therefore not affected if the key is revoked

  • Metadata (file name, collection name, font use, MIME type, and other attributes necessary to browse a collection)
  • Videos published by Adobe Spark Video
  • Lightroom photos
  • Colors that are stored by the Adobe Color service
  • All data that is managed by the Behance and Adobe Fonts services
  • All data managed by the Experience Cloud
  • Saved application preferences
  • Information about the account holder such as name, email, licenses, and other basic user account information
  • Data of members of an organization with an Adobe ID account (unless the user is collaborating on content when Enterprise ID or Federated ID users initiated the collaboration)
Piezīme.

We're updating organizations (teams or enterprises) to the Enterprise storage model to enable enterprise storage and other enterprise-level features for Adobe ID users.

You'll be notified when your organization is scheduled for the update. After the update, the Adobe ID users are moved to enterprise storage, and the organization directly controls their business profiles.

Enable dedicated encryption keys

Piezīme.

Adobe is updating encryption on the Admin console from directory-level to organization-level encryption. If you've a new customer or you've never used directory-level encryption, you will get the option to enable encryption for all users in your organization. If you've previously encrypted one or more directories, you can continue to use directory-level encryption till your organization is migrated. 

  1. Sign in to the Admin Console, and navigate to Settings > Identity > Encryption Settings.

  2. On the Encryption Settings page, enable encryption.

    Enable encryption

  3. Click Enable.

    The Enable Dedicated Encryption Key dialog box appears.

  4. Click Enable to confirm.

    The following message indicates that dedicated key encryption is now enabled:

    Dedicated key encryption enabled

  1. Sign in to the Admin Console, and navigate to Settings > Identity.

    In the Identity page, the Directory tab lists the directories in your organization.

  2. To enable a dedicated encryption key, click the directory name.

  3. Click Settings.

    The Directory Settings page is displayed.

    Piezīme.

    If you don't see an option to use dedicated encryption keys for a specific directory, your organization has been upgraded to use dedicated encryption at the organization level.  To enable dedicated encryption key, go to Settings > Encryption Settings. For details, see the section above, on how to enable encryption at the organization level.

  4. Click Enable.

    The Enable Dedicated Encryption Key dialog box appears.

  5. Click Enable to confirm.

    When the dedicated encryption key is successfully enabled, a message indicating the success is displayed. If you have existing assets, asset encryption begins and the encryption progress is displayed. Users can continue working, uninterrupted, while the encryption process in progress.

Also, a message is displayed if, for any reason, the enabling of the encryption key fails or the key is enabled but asset encryption has failed.

Revoke dedicated encryption keys

Piezīme.

Adobe is updating encryption on the Admin console from directory-level to organization-level encryption. If you've a new customer or you've never used directory-level encryption, you will get the option to disable encryption for all users in your organization. If you've previously encrypted one or more directories, you can continue to use directory-level encryption until your organization is migrated. 

If you revoke a dedicated encryption key, data encrypted with the encryption key is no longer accessible to users.

Piezīme.

Users cannot open existing assets, but can browse files, folders, and view attributes. Revoking encryption key restricts all access, even uploading new content. Users will only be able to browse content.

To revoke the dedicated encryption key:

  1. Sign in to the Admin Console, and navigate to Settings > Identity > Encryption Settings.

  2. On the Encryption Settings page, revoke encryption.

    Enable encryption

    The Revoke Dedicated Encryption Key dialog box appears.

  3. Click Revoke to confirm.

    When the dedicated encryption key has been successfully revoked, a message indicating the success displays. 

    Revoke success

  1. Sign in to the Admin Console, and navigate to Settings > Identity.

    In the Identity page, the Directory tab lists the directories in your organization.

  2. To revoke the dedicated encryption key, click the directory name.

  3. Click Settings.

    The Directory Settings page is displayed.

    Piezīme.

    If you don't see an option to revoke dedicated encryption keys for a specific directory, your organization has been upgraded to use dedicated encryption at the organization level.  To revoke the dedicated encryption key, go to Settings > Encryption Settings. For details, see the section above, on how to revoke encryption at the organization level.

  4. Click Revoke.

    The Revoke Dedicated Encryption Key dialog box appears.

  5. Click Revoke to confirm.

    When the dedicated encryption key has been successfully revoked, a message indicating the success displays. 

More like this

Adobe logotips

Pierakstieties savā kontā

Ātrās saites

Skatīt visus plānus Pārvaldiet savus plānus

Legal Notices    |    Online Privacy Policy