We couldn’t sign you in
Select the account you want to use.


Consider the following scenario:

  • You configure a journal rule that sends journal messages to a distribution group in a Microsoft Exchange Server 2010 environment.

  • You enable the Active Directory Rights Management Services (AD RMS) service to encrypt email messages.

  • A user in the distribution group logs on to his or her mailbox to view journal messages.

In this scenario, the user cannot view the decrypted message attachment in the journal message.


This issue occurs because Exchange Server 2010 server does not decrypt the journal message if at least one SMTP address of a distribution group member is not present in any journal rules.


To work around this issue, create journal rules for each member of the distribution group.

For example, in the Exchange Management Console, create a mail contact, such as example@domain.com, and then hide these contact details from all address lists. Then, create a journal rule for the example@domain.com contact that sends journal messages to a distribution group member. Repeat the journal rule for each member of the distribution group.


This behavior is by design.

More Information

For more information about how to create a journal rule, visit the following Microsoft website:

How to create a journal rule in an Exchange Server 2010 environment

Need more help?

Expand your skills
Explore Training
Get new features first
Join Microsoft Insiders

Was this information helpful?

What affected your experience?

Thank you for your feedback!