User Guide Cancel

Setting up security policies for PDFs

Search
Adobe Acrobat

Adobe Acrobat

Open on web
  1. Acrobat User Guide
  2. Introduction to Acrobat
    1. Access Acrobat from desktop, mobile, web
    2. Introducing the new Acrobat experience
    3. What's new in Acrobat
    4. Keyboard shortcuts
    5. System Requirements
  3. Workspace
    1. Workspace basics
    2. Opening and viewing PDFs
      1. Opening PDFs
      2. Navigating PDF pages
      3. Viewing PDF preferences
      4. Adjusting PDF views
      5. Enable thumbnail preview of PDFs
      6. Display PDF in browser
    3. Working with online storage accounts
      1. Access files from Box
      2. Access files from Dropbox
      3. Access files from OneDrive
      4. Access files from SharePoint
      5. Access files from Google Drive
    4. Acrobat and macOS
    5. Acrobat notifications
    6. Grids, guides, and measurements in PDFs
    7. Asian, Cyrillic, and right-to-left text in PDFs
  4. Creating PDFs
    1. Overview of PDF creation
    2. Create PDFs with Acrobat
    3. Create PDFs with PDFMaker
    4. Using the Adobe PDF printer
    5. Converting web pages to PDF
    6. Creating PDFs with Acrobat Distiller
    7. Adobe PDF conversion settings
    8. PDF fonts
  5. Editing PDFs
    1. Edit text in PDFs
    2. Edit images or objects in a PDF
    3. Rotate, move, delete, and renumber PDF pages
    4. Edit scanned PDFs
    5. Enhance document photos captured using a mobile camera
    6. Optimizing PDFs
    7. PDF properties and metadata
    8. Links and attachments in PDFs
    9. PDF layers
    10. Page thumbnails and bookmarks in PDFs
    11. PDFs converted to web pages
    12. Setting up PDFs for a presentation
    13. PDF articles
    14. Geospatial PDFs
    15. Applying actions and scripts to PDFs
    16. Change the default font for adding text
    17. Delete pages from a PDF
  6. Scan and OCR
    1. Scan documents to PDF
    2. Enhance document photos
    3. Troubleshoot scanner issues when scanning using Acrobat
  7. Forms
    1. PDF forms basics
    2. Create a form from scratch in Acrobat
    3. Create and distribute PDF forms
    4. Fill in PDF forms
    5. PDF form field properties
    6. Fill and sign PDF forms
    7. Setting action buttons in PDF forms
    8. Publishing interactive PDF web forms
    9. PDF form field basics
    10. PDF barcode form fields
    11. Collect and manage PDF form data
    12. About forms tracker
    13. PDF forms help
    14. Send PDF forms to recipients using email or an internal server
  8. Combining files
    1. Combine or merge files into single PDF
    2. Rotate, move, delete, and renumber PDF pages
    3. Add headers, footers, and Bates numbering to PDFs
    4. Crop PDF pages
    5. Add watermarks to PDFs
    6. Add backgrounds to PDFs
    7. Working with component files in a PDF Portfolio
    8. Publish and share PDF Portfolios
    9. Overview of PDF Portfolios
    10. Create and customize PDF Portfolios
  9. Sharing, reviews, and commenting
    1. Share and track PDFs online
    2. Mark up text with edits
    3. Preparing for a PDF review
    4. Starting a PDF review
    5. Hosting shared reviews on SharePoint or Office 365 sites
    6. Participating in a PDF review
    7. Add comments to PDFs
    8. Adding a stamp to a PDF
    9. Approval workflows
    10. Managing comments | view, reply, print
    11. Importing and exporting comments
    12. Tracking and managing PDF reviews
  10. Saving and exporting PDFs
    1. Saving PDFs
    2. Convert PDF to Word
    3. Convert PDF to PPTX
    4. Convert PDF to XLSX or XML
    5. Convert PDF to JPG
    6. Convert PDF to PNG
    7. Convert or export PDFs to other file formats
    8. File format options for PDF export
    9. Reusing PDF content
  11. Security
    1. Enhanced security setting for PDFs
    2. Securing PDFs with passwords
    3. Manage Digital IDs
    4. Securing PDFs with certificates
    5. Opening secured PDFs
    6. Removing sensitive content from PDFs
    7. Setting up security policies for PDFs
    8. Choosing a security method for PDFs
    9. Security warnings when a PDF opens
    10. Securing PDFs with Adobe Experience Manager
    11. Protected View feature for PDFs
    12. Overview of security in Acrobat and PDFs
    13. JavaScripts in PDFs as a security risk
    14. Attachments as security risks
    15. Allow or block links in PDFs
  12. Electronic signatures
    1. Sign PDF documents
    2. Capture your signature on mobile and use it everywhere
    3. Send documents for e-signatures
    4. Create a web form
    5. Request e-signatures in bulk
    6. Collect online payments
    7. Brand your account
    8. About certificate signatures
    9. Certificate-based signatures
    10. Validating digital signatures
    11. Adobe Approved Trust List
    12. Manage trusted identities
  13. Printing
    1. Basic PDF printing tasks
    2. Print Booklets and PDF Portfolios
    3. Advanced PDF print settings
    4. Print to PDF
    5. Printing color PDFs (Acrobat Pro)
    6. Printing PDFs in custom sizes
  14. Accessibility, tags, and reflow
    1. Create and verify PDF accessibility
    2. Accessibility features in PDFs
    3. Reading Order tool for PDFs
    4. Reading PDFs with reflow and accessibility features
    5. Edit document structure with the Content and Tags panels
    6. Creating accessible PDFs
    7. Cloud-based auto-tagging
  15. Searching and indexing
    1. Creating PDF indexes
    2. Searching PDFs
  16. Multimedia and 3D models
    1. Add audio, video, and interactive objects to PDFs
    2. Adding 3D models to PDFs (Acrobat Pro)
    3. Displaying 3D models in PDFs
    4. Interacting with 3D models
    5. Measuring 3D objects in PDFs
    6. Setting 3D views in PDFs
    7. Enable 3D content in PDF
    8. Adding multimedia to PDFs
    9. Commenting on 3D designs in PDFs
    10. Playing video, audio, and multimedia formats in PDFs
    11. Add comments to videos
  17. Print production tools (Acrobat Pro)
    1. Print production tools overview
    2. Printer marks and hairlines
    3. Previewing output
    4. Transparency flattening
    5. Color conversion and ink management
    6. Trapping color
  18. Preflight (Acrobat Pro)
    1. PDF/X-, PDF/A-, and PDF/E-compliant files
    2. Preflight profiles
    3. Advanced preflight inspections
    4. Preflight reports
    5. Viewing preflight results, objects, and resources
    6. Output intents in PDFs
    7. Correcting problem areas with the Preflight tool
    8. Automating document analysis with droplets or preflight actions
    9. Analyzing documents with the Preflight tool
    10. Additional checks in the Preflight tool
    11. Preflight libraries
    12. Preflight variables
  19. Color management
    1. Keeping colors consistent
    2. Color settings
    3. Color-managing documents
    4. Working with color profiles
    5. Understanding color management

Before you begin

We're rolling out a new, more intuitive product experience. If the screen shown here doesn’t match your product interface, select help for your current experience.

In the new experience, the tools appear on the left side of the screen.

Note:

For a full list of articles about security, see Overview of security in Acrobat and PDF content.

Types of security policies

If you often apply the same security settings to multiple PDFs, you can save your settings as a policy that you can reuse. Security policies save time while ensuring a consistently secure workflow. Creating policies for password and certificate security lets you reuse the same security settings for any number of PDFs. Two kinds of security policies are available:

  • Organizational policies are especially useful if you want others to have access to PDFs for a limited time. Adobe Experience Manager - Forms Server (Document Security) policies are stored on a server. Users must have access to the server to use these policies. Creating these policies requires specifying the document recipients from a list on Adobe Experience Manager - Forms Server (Document Security). Adobe Experience Manager - Forms Server (Document Security) controls access to PDFs and auditing events as defined by the security policy. You can use Experience Manager - Forms Server (Document Security) if your company has licensed the software and made it available to you.

  • User policies are created and applied by individuals. If you apply the same security settings to numerous documents, you can save time by creating a user policy. Then, apply the user policy to documents. User policies for passwords and public key certificates are stored on your local computer. With access to Adobe Experience Manager - Forms Server (Document Security), you can create a user policy that’s stored on the Forms Server. That policy is available only to you.

How organizational policies are authenticated

In addition to reusing security settings, policies stored on Adobe Experience Manager Forms Server (Document Security) enable you to expire and revoke documents. You can also maintain accountability by auditing users who open protected documents.

Adobe LiveCycleRights Management
Security policies

A. Policies are stored on server. B. Policies are applied to a PDF. C. Users can open, edit, and print a document only if permitted by policy. 

Setting up server-based security policies involves four main stages:

Configure the Adobe Experience Manager - Forms Server

The system administrator of your company or group usually configures Adobe Experience Manager - Forms Server (Document Security), manages accounts, and sets up organizational policies. For more information on configuring Adobe Experience Manager - Forms Server (Document Security), see the Adobe website.

Publish a document with a security policy

An author creates a PDF and applies a policy stored on Adobe Experience Manager Forms Server to the PDF. The server generates a license and unique encryption key for the PDF. Acrobat embeds the license in the PDF and encrypts it using the encryption key. The author or administrator can use this license to track and audit the PDF.

View a document with a policy applied

When users try to open the secure PDF in Acrobat, they must authenticate their identities. If the user is granted access to the PDF, the PDF is decrypted and opens with the permissions specified in the policy.

Administer events and modify access

By logging in to an Adobe Experience Manager - Forms Server (Document Security) account, the author or administrator can track events and change access to policy-secured PDFs. Administrators can view all PDF and system events, modify configuration settings, and change access to policy-secured PDFs.

Create a user security policy

User policies can use passwords, certificates, or Adobe Experience Manager - Forms Server (Document Security) to authenticate documents.

The policies for password and certificate security can be stored on a local computer. Security policies created using Adobe Experience Manager - Forms Server  (Document Security) are stored on a server. You can audit actions and change security settings dynamically. You can use Adobe Experience Manager - Forms Server (Document Security) if your company has licensed the software and made it available to you.

Create a password policy

  1. In Acrobat Home, choose See all tools > Protect a PDF > Manage security policies

  2. Select New.

  3. Select Use passwords, and then select Next.

  4. Type a name and description for the policy, do one of the following, and then select Next:

    • To specify passwords and restrictions when applying this policy to a document, clear the Save Passwords With The Policy option.

    • To save passwords and restriction settings with the policy, select Save Passwords With The Policy.

  5. Specify a compatibility setting and password options. If you selected Save Passwords With The Policy, specify the password and restrictions. Select OK.

  6. Review the policy details, select Finish, and then select Close.

Create a certificate policy

  1. In Acrobat Home, choose See all tools > Protect a PDF > Manage security policies

  2. Select New.

  3. Select Use public key certificates, and then select Next.

  4. Type a name and description for the policy, and specify the document components to encrypt.

    Certificates must be current and have key usage that allows for encryption.

  5. Determine how to enforce the policy:

    • To create a policy that is associated with individual recipients, do not select Ask For Recipients When Applying This Policy.

    • To create a policy that is associated with individual documents, select Ask For Recipients When Applying This Policy.

  6. Select an encryption algorithm from the menu that is compatible with the recipients’ version of Acrobat, and click Next.
  7. Do one of the following:

    • If you select Ask For Recipients When Applying This Policy, review the policy settings and then select Finish.

    • If you did not select Ask For Recipients When Applying This Policy, specify recipients by selecting digital IDs (including your digital ID). Then select Next.

  8. Select Finish.

Creating policies for secure file attachments

You can add security to one or more documents by embedding them in a security envelope and sending it as an email attachment. This method is useful if you want to send a secure file attachment without encrypting the files. You can embed the documents as file attachments in a security envelope, and encrypt and send the envelope to the recipients. When the recipients open the envelope, they can extract the file attachments and save them. The saved files are identical to the original file attachments and are no longer encrypted when saved.

For example, when you send confidential documents, including non-PDF files, you only want the recipient to view the documents. You can embed these documents as attachments in a security envelope, encrypt the envelope, and send it by email. Anyone can open the envelope, view its cover page, and even view a list of the contents. However, only the recipient can view the embedded attachments and extract them.

Embed file attachments in security envelopes for secure transit
Embed file attachments in security envelopes for secure transit.

  1. Select  All tools > Protect a PDF. Select Create Security Envelope under ADVANCED OPTIONS.

  2. Select Add File to Send, select the documents you want to attach, and then select Next.

  3. Select an Envelope Template, and select Next.

  4. Select a Delivery Method, and select Next.

  5. If an envelope policy has been created, select it or select New Policy. Then, follow the steps to create a policy.

  6. Review the information and select Finish.

  7. For some policies, you are asked to type the information you want displayed on the envelope. Enter enough information to allow recipients to identify the sender of the envelope.
  8. Complete the security information (password, certificate, or policy).

  9. When the envelope is displayed, type the names of the recipients. Then, either select the Save or Mail icon in the toolbar.

    If you select the Mail icon, your default email program opens with the security envelope as an attachment. Type the email addresses of the recipients and send the email message.

Apply a policy to attachments in Outlook

You can send different types of files as secure PDF attachments in Microsoft Outlook. This option is available only if Adobe Experience Manager - Forms Server (Document Security) is set up and available in Acrobat.

  1. In Outlook, choose New Mail Message on the Home ribbon.
  2. Click the Attach As Secured Adobe PDF button  on the Adobe PDF ribbon.
  3. Select the file you want to attach by typing the file path or by clicking Browse.

  4. Specify how you want to secure the document, and select OK.

    The file is converted to PDF and encrypted using the security method you choose.

  5. Complete the email message, and then select Send.

Export security settings

  1. In Acrobat, select Acrobat from the upper-left(macOS) or the hamburger menu   (Windows) and then select Preferences > Security > Export.

  2. Choose which groups of settings you want to share and select OK.

  3. Review and modify the security settings as needed, and then select Export.

  4. Select the method to encrypt the security settings (if desired), and then select OK.

  5. Choose Recipients and select OK twice.

  6. Sign the file.

Copy, edit, or delete a policy

  1. In Acrobat Home, choose See all tools > Protect a PDF > Manage security policies.

  2. From the Show drop-down list, choose whether you want to display all policies you have access to, user policies you’ve created, or organizational policies.

  3. Select a policy, and then use the options you want:
    Note:

    Options to edit or delete organizational policies aren’t available unless you have administrator rights to Adobe Experience Manager - Forms Server (Document Security). Changes to these policies can be made only on Adobe Experience Manager - Forms Server (Document Security), which opens automatically when you select an option.

    Copy

    Use to create a policy that’s based on the settings of an existing policy.

    Edit

    Editing a user policy that is stored on a local computer affects only documents to which the policy is applied after the policy is edited. For user policies stored on a server, you can edit the permission settings and other options. This option isn’t available for organizational policies.

    Delete

    This option is not available usually for organizational policies.

    Favorite

    If this option is selected, a star appears next to the policy. To remove a policy from the favorites, click Favorite again. You can apply the Favorite option to multiple policies. Use this option to make a policy easier to retrieve.

Revoke a policy-protected PDF

To restrict access to a policy-protected PDF that you made available to a group of users, you can revoke the document.

  1. Do one of the following:

    • For a single PDF or a component PDF in a PDF Portfolio, open the PDF and log in to Adobe LiveCycle Rights Management ES.

    • For a PDF Portfolio, open the PDF Portfolio, log in to Adobe Experience Manager - Forms Server (Document Security).

  2. Choose All tools > Protect a PDF > Document Security > Revoke

  3. From the menu on the web page, choose an option that explains why you’re revoking the document, or type a message. If you’re replacing the revoked document, type the URL location of the new document.

  4. Select OK to save your changes.

More like this

 Adobe

Get help faster and easier

New user?

Quick links

View all your plans Manage your plans
View quick links
Hide quick links

Legal Notices    |    Online Privacy Policy