Poznámka:

  Typekit is now called Adobe Fonts and is included with Creative Cloud and other subscriptions. Learn more.

Using Creative Cloud or Document Cloud for enterprise, end users can store files safely and securely. Users can also share files and collaborate with others. Files are accessible to users via the Creative Cloud website, Creative Cloud desktop app, and Creative Cloud mobile app. Storage is available with Creative Cloud or Document Cloud for enterprise only if it is a part of your organization's agreement with Adobe.

While all data on Creative Cloud and Document Cloud is encrypted, for extra layers of control and security, you can choose to have Adobe generate a dedicated encryption key for some or all the directories in your organization. Contents are then encrypted using the dedicated encryption key. If necessary, you can revoke the encryption key from the Admin Console.

Dedicated encryption keys are available only with the Creative Cloud or Document Cloud for enterprise shared services plans that include storage and services.

Before enabling dedicated encryption keys for your directories, see Adobe Creative Cloud for enterprise security overview or Adobe Document Cloud security.

To upgrade your plan to include storage and services, contact your Adobe Account Manager.

Manage encryption keys for directories

You can use dedicated encryption keys on a directory-by-directory basis, for the directories in your organization.

Make note of the following when working with encryption keys:

  • Ensure that you have claimed and activated your domains to enable dedicated encryption keys for the directories that contain these domains.
  • Once you enable a dedicated encryption key, you cannot revert to using standard encryption keys.
  • You can revoke a dedicated encryption key, if necessary. If you revoke the encryption key, your users can no longer access content that has been encrypted using the encryption key. For example, if you suspect a data breach, you can immediately revoke the dedicated encryption key from the Admin Console.
  • To restore access to content whose encryption key has been revoked, re-enable the encryption key from the Admin Console.

The following data is not encrypted using the dedicated encryption key and is therefore not affected if the key is revoked:

  • Data of members of an organization with an Adobe ID account (unless the user is collaborating on content when Enterprise ID or Federated ID users initiated the collaboration)
  • Metadata (file name, collection name, font use, MIME type, and other attributes necessary to browse a collection)
  • Videos published by Premiere Clip and Adobe Spark Video
  • Lightroom photos
  • Colors that are stored by the Adobe Color service
  • All data that is managed by the Behance and Adobe Fonts services
  • All data managed by the Marketing Cloud
  • Saved application preferences
  • Information about the account holder such as name, email, licenses, and other basic user account information

Enable dedicated encryption keys

To use a dedicated encryption key for your directory, follow the below process:

  1. Sign in to the Admin Console, and navigate to Settings > Identity.

    In the Identity page, the Directory tab lists the directories in your organization.

  2. Click the directory name to enable a dedicated encryption key.

  3. Click Settings.

    The Directory Settings page is displayed.

    Directory settings
  4. Click Enable.

    The Enable Dedicated Encryption Key dialog box appears.

    Enable Dedicated Encryption Key dialog box
  5. Click Enable to confirm.

    When the dedicated encryption key is successfully enabled, a message indicating the success is displayed. If you have existing assets, asset encryption begins and the encryption progress is displayed. Users can continue working, uninterrupted, while the encryption process in progress.

Also, a message is displayed if, for any reason, the enabling of the encryption key fails or the key is enabled but asset encryption has failed.

Revoke dedicated encryption keys

If you revoke a dedicated encryption key, data encrypted with the encryption key is no longer accessible to users.

Poznámka:

Users may still be able to browse files and folders and view attributes.

To revoke the dedicated encryption key for a directory, do the following:

  1. Sign in to the Admin Console, and navigate to Settings > Identity.

    In the Identity page, the Directory tab lists the directories in your organization.

  2. Click the directory name to revoke the dedicated encryption key.

  3. Click Settings.

    The Directory Settings page is displayed.

    Directory settings
  4. Click Revoke.

    The Revoke Dedicated Encryption Key dialog box appears.

    Revoke Dedicated Encryption Key
  5. Click Revoke to confirm.

    When the dedicated encryption key has been successfully revoked, a message indicating the success displays. 

    Revoke success

Licencia na používanie tohto diela sa poskytuje v súlade s podmienkami licencie Creative Commons Attribution-Noncommercial-Share Alike 3.0 Unported License  Na príspevky v sociálnych sieťach Twitter™ a Facebook sa nevzťahujú podmienky licencií Creative Commons.

Právne upozornenia   |   Zásady ochrany osobných údajov online