This section walks through the process of configuring DRM permissions for Low- and High-Trust user groups. It first offers a recommended configuration for each classification and then provides steps to configure permissions at the individual library level or at the site level.
Recommended Configuration
Low-Trust User Groups
Enable DRM for low-trust user groups to limit their access to documents in a document library. Optionally, grant the low-trust user groups DRM permissions to Copy or Print the document from the viewer.
 |
IMPORTANT: Carefully consider when granting a low-trust user group the DRM permission for Save/Send. This permission would allow members of the group to download the original document. |
High-Trust User Groups
Disable DRM for high-trust user groups on document libraries to allow them to use the SharePoint features without disruption.
Configuration Steps
Two sets of configuration steps for DRM permissions are provided. The first set allows configuration of DRM permissions that apply site-wide, which is the quickest way to apply DRM protection to documents in all libraries of the site. The second set of instructions allows configuration of DRM permissions at the individual library level, which includes the ability to override the site-wide settings for a specific library.
Depending on the needs of the organization deploying DRM, DRM may only need to be configured for individual document libraries, only site-wide, or in some cases a little of both: