Know if SMEX can scan encrypted mails via Microsoft AD RMS.
The following scenarios explain when does the SMEX real-time scan works and when it can scan the messages:
- For Exchange 2010 transport level, the SMEX real-time scan works if the TransportDecryptionSetting is enabled. If not, the SMEX cannot scan the messages.
To enable the TransportDecryptionSetting:
- Open the Exchange Management Shell
- Navigate to Set > IRMConfiguration > TransportDecryptionSetting.
- Select Mandatory or Optional.
- For Exchange 2010 store level, SMEX cannot scan the messages.
- For Exchange 2013, SMEX real-time scan works when the TransportDecryptionSetting is activated. However, the manual and scheduled scan will not work.
Only SMEX 11.0 can be installed in Exchange 2013.