this seems to fix it or at least work around it
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\DRM
Name: PreferredRmsPackage
Type: DWORD
Value: 1
Information Rights Management Issue when opening encrypted emails
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(70.4, 81%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EJM%3C/text%3E%3C/svg%3E)
Jadyn Maxwell
15
Reputation points
Symptom
User cannot open IRM-protected emails in Classic Outlook.
The same messages open fine in New Outlook and Outlook on the Web (OWA) with the same account on the same device.
Expected
Classic Outlook should honor IRM and open the protected message like New Outlook/OWA.
Actual
In Classic Outlook, opening an encrypted message triggers a Windows Security credential loop or fails to render the IRM content (no useful error).
No add-ins are required for our scenario (using built-in IRM/OME).
Repro steps
Sign into Classic Outlook with the user’s M365 account.
Open an IRM-protected message (internal sender).
Classic Outlook loops on credentials / fails to display content.
- Opening the same message in New Outlook and OWA succeeds.Symptom
- User cannot open IRM-protected emails in Classic Outlook.
- The same messages open fine in New Outlook and Outlook on the Web (OWA) with the same account on the same device.
- Classic Outlook should honor IRM and open the protected message like New Outlook/OWA.
- In Classic Outlook, opening an encrypted message triggers a Windows Security credential loop or fails to render the IRM content (no useful error).
- No add-ins are required for our scenario (using built-in IRM/OME).
- Sign into Classic Outlook with the user’s M365 account.
- Open an IRM-protected message (internal sender).
- Classic Outlook loops on credentials / fails to display content.
- Opening the same message in New Outlook and OWA succeeds.
Outlook | Windows | Classic Outlook for Windows | For business
7 answers
Sort by: Most helpful
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 39%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3E0%3C/text%3E%3C/svg%3E)
03522058 6 Reputation points2025-09-12T21:32:51.0866667+00:00 -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(131.20000000000002, 22%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
Gotquestions 0 Reputation points2025-09-13T16:05:12.6633333+00:00 This did work for me, though doesn't seem like an ideal solution long term. Here is an article discussing it more: https://support.microsoft.com/en-us/office/error-replying-to-encrypted-emails-from-outlook-desktop-de99eca5-a559-4d95-aef7-b56da97cc255
Sign in to comment -
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 69%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERN%3C/text%3E%3C/svg%3E)
Ruby-N 2,145 Reputation points Microsoft External Staff Moderator2025-09-11T19:42:40.1666667+00:00 Dear @Jadyn Maxwell,
I hope you're having a nice day. Thank you for reaching out to the Microsoft Q&A forum and for sharing the details of your issue.
I understand how disruptive it can be when IRM-protected emails fail to open in Classic Outlook, even though they work correctly in New Outlook and Outlook on the Web.
This issue is likely related to how Classic Outlook handles IRM authentication, where the service may fail to initialize properly, resulting in credential loops or unreadable protected content, unlike in newer Outlook versions. To help narrow this down further, could you confirm the following:
- Are you the IT administrator in your organization?
- Is this issue affecting your colleagues as well, or is it only happening to you?
- Are you using a personal device or one that is managed by your organization?
- Have you tested this behavior on a different device or user profile to rule out local configuration issues?
- Is the affected account part of an Azure Active Directory tenant with Conditional Access policies or MFA enabled?
- Are you using the latest version of Classic Outlook with all updates applied?
This will help us better understand the context and provide more targeted support. Any additional information will help us better understand and support you.
While we gather that information, here are some steps you can try in the meantime to help identify the issue:
1/ Basic Checks
- To begin, please ensure that Classic Outlook is fully updated to the latest version. This helps eliminate compatibility issues that may affect IRM functionality.
- Next, try signing out of your Microsoft 365 account in Outlook and signing back in. This refreshes your credentials and may resolve authentication-related errors.
- You should also check your device’s connectivity to IRM-related endpoints. I recommend running the Microsoft 365 Network Connectivity Test to verify access to essential domains such as *.aadrm.com, *.informationprotection.azure.com, and *.microsoftonline.com. If any of these are blocked, please share the results with your IT or network team to adjust proxy or firewall settings accordingly.
2/ Missing or Faulty RMS Client
Classic Outlook may also require the Microsoft Rights Management Services (RMS) Client 2.1 to properly handle IRM-protected content. If it’s not already installed, you can download it from the official Microsoft Download Center. Please note that administrator rights are required to install this client.
Download and install the RMS Client 2.1 from Microsoft: Download Rights Management Service Client 2.1 from Official Microsoft Download Center
3/ Lastly, you may consider asking your IT administrator to review Conditional Access policies in the Microsoft Entra Admin Center. It’s important to ensure that Outlook Desktop is not being restricted and that Multi-Factor Authentication (MFA) settings are not interfering with IRM authentication. In some cases, temporarily disabling MFA for testing purposes can help isolate the issue.
Since New Outlook and Outlook on the Web are functioning correctly, you may consider using those clients as a temporary alternative while we continue investigating the issue with Classic Outlook.
Please let me know once you’ve had a chance to review these points, and I’ll be happy to assist with next steps. While our initial response might not always resolve the issue right away, your input and any additional details you can share will really help us work together toward a solution. Your cooperation means a lot, and it helps us ensure that we can deliver the best possible support tailored to your situation.
Thank you for your patience and your understanding. If you have any questions, please feel free to reach out.
If the answer is helpful, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.
-
Jadyn Maxwell 15 Reputation points
2025-09-12T15:42:06.9733333+00:00 Hi Ruby, after downloading the RMS 2.1 client I was able to open the encrypted emails, however they take 5+ minutes to open and it is not a guaranteed success.
I believe that Brad had a point if you look as his comment below which mentions the version.
Affected clients are on the version below:
To answer your previous questions, yes I am an IT administrator, the issues aren't happening to me or my colleagues but they are happening to our clients as I work for an MSP.
The client is using a company managed computer, yes this behavior has happened on more than one device across multiple companies.
Yes, the account is part of an Azure Active Directory tenant with Conditional Access policies or MFA enabled.
I also ran the Connectivity test which everything came out as normal, I will attach a report of the test on the affected users machine.
-
Jadyn Maxwell 15 Reputation points
2025-09-12T15:44:35.1366667+00:00 Furthermore, I receive this prompt when attempting to close the open encrypted emails, yet I haven't made any changes to the attachments. If I click yes on the prompt then the IRM box re-appears and endlessly sits at the prompt.
The Outlook preview panel will also show the message but if you click on a different email and return to the encrypted email it will sit at the IRM prompt again
-
Ruby-N 2,145 Reputation points Microsoft External Staff Moderator
2025-09-15T18:38:48.2933333+00:00 Dear @Jadyn Maxwell,
Thank you so much for taking the time to reply and for providing such detailed context about the issue you're experiencing. I truly appreciate your patience and the effort you've put into explaining how this impacts. I'm truly sorry, and I sincerely apologize that my current workaround hasn’t fully addressed your concern. I understand that, although you’re now able to open IRM emails, the experience remains limited and inconvenient.
I’ve carefully reviewed all the comments in the post along with the information you provided. It appears that several users are experiencing similar issues specifically with the Classic Outlook interface.
To ensure the issue is properly diagnosed and resolved, I recommend contacting Microsoft Support directly. A technical support engineer can perform a remote session to investigate the situation, verify the backend configurations, and run any necessary synchronization tools to resolve the problem. If the issue requires further attention, they can escalate it to a specialized team for deeper analysis.
Note: Please understand the scope of support we’re able to provide through this forum. As moderators, our role is to offer general guidance and help troubleshoot common issues. However, we don’t have access to the internal tools or permissions required to resolve certain account-specific or backend problems.
- We sincerely recommend you try to create a support ticket from Microsoft 365 Admin Center>Support>Help & Support.
You can raise support ticket from: Microsoft 365 admin center
For reference: Get support - Microsoft 365 admin | Microsoft Learn
- Phone Support: Microsoft provides customer service phone numbers based on your region. You can find the appropriate contact number here: Customer service phone numbers - Microsoft Support
Note: If you’re an end-user, please coordinate with your Office 365 Global Administrator to handle these steps.
While I regret that I cannot offer a more immediate solution, I will continue to support you in any way I can throughout the process. Once you have successfully created a support ticket, feel free to share the ticket tracking ID with me in Private Message. This will allow me to monitor progress on your behalf and help ensure that the issue is addressed in a proper and timely manner.To view or send private messages, sign in to the Q&A forum using the account that posted this thread, then click Private Messages.
We understand that our initial response may not always provide an immediate resolution. However, any insights or additional details you share are instrumental in helping us move forward together toward a solution. Your collaboration is greatly appreciated and allows us to tailor our support to better meet your specific needs.
I genuinely appreciate your understanding and patience throughout this process.
Sign in to comment -
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(169.60000000000002, 51%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBM%3C/text%3E%3C/svg%3E)
Brad M 6 Reputation points2025-09-12T11:58:43.9733333+00:00 Hello,
I am experiencing the same issue. I did go through the suggestions Ruby-N provided above but didn't help in my case.
I am running Outlook classic version 2508 19127.20222.
I have a virtual machine with an older client version, 2502 18526.20168 and opening the encrypted email works as expected. So that leads me to an update to the client broke it.
-
Jadyn Maxwell 15 Reputation points
2025-09-12T15:27:29.0033333+00:00 Effected computers are also using the same version
Sign in to comment -
-
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(83.2, 53%, 18%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAW%3C/text%3E%3C/svg%3E)
Angie Wright 0 Reputation points2025-09-12T15:11:29.6466667+00:00 I have a client that is having the same issue with all of their classic Outlooks. Works in web and new outlook but not in classic outlook. They have been using new outlook or web to open these emails but can't move to new outlook permanently as a solution as they have a third party software they use that will not work with new outlook as of yet.
The worst part of this is if one of these emails is the first email in the inbox or a subfolder - it freezes Outlook as it works through this. It's pretty crippling for them. This is the only comment/question I can find on the issue so far and no solution.
-
03522058 6 Reputation points
2025-09-12T18:00:50.4+00:00 I have the same issue but using semi-annual channel. anyone find a working fix?