The Global Object Security (GOS) policy is a setting in Adobe Reader and Adobe Acrobat that controls how cookies in Adobe products behave. The default setting is to "enable global object security policy" which means that every time someone renames a file or moves a file to a different location, a different cookie is created each time. Since Vitrium's content security solution relies on these cookies to track the number of 'devices' that a user opens the secured content on, it is STRONGLY recommended that end users disable this feature.
- In Adobe, go to Edit > Preferences
- De-select (uncheck) the "global object security policy" field
- Click OK
Users will only need to do this once for one computer. If they wish to open the protected PDF file on a 2nd computer (assuming they have permission to do so), then they will need to disable the GOS policy in Adobe on the other computer as well.
To learn more about disabling the GOS check out 'How to Support Your End-Users' guide or 'How to Open a Vitrium Protected PDF with Adobe Reader' videos.
Why do users need to disable the Global Object Security Policy in Adobe?
Because otherwise the user may exceed the limit that was set for them in their DRM policy and they will encounter the vc3 error message (You have exceeded your PDF or browser limit) even if they have only opened the file on the same computer.
By disabling Adobe's GOS policy, the user can then safely move the protected file from one folder to another, or rename the protected file to something else, but not reach their limit as the cookie is saved with the file on that same computer.
Can I remove the Adobe global object security policy pop-up message?
Yes, you can remove this message but we only recommend this to Vitrium customers who DO NOT set a PDF limit in their DRM policy settings.
To remove the message:
- In Vitrium, create a new Content Settings
- Click the Advanced Options tab
- For both Acrobat 10.0 and Acrobat 11.0+, select "No prompt and no close document" for both fields
- Ensure all your other Content Settings are created (i.e. no print, no copy, etc.)
- Click Save & Exit
- Then apply this new Content Setting to all files or only those files where you do not require a PDF limit for users
Using Vitrium's Version\Unique API, this content setting can be changed/overridden by including this parameter:
AcroJsGosBehaviourType would apply to Acrobat v10 and earlier releases
AcroJsGosUnlimitedBehaviourType would apply to Acrobat v11 and newer releases
Definition of each Acrobat GOS policy setting:
- PromptAndCloseDocument - this will prompt the user if they don't have the global object security policy setting disabled and will close the document until they make this change. This is the default setting.
- PromptOnly - this will prompt the user if they don't have the global object security policy setting disabled but will not close the document. You then run the risk of the user reaching their PDF limit if they did not follow the instructions.
- PromptOnce - this will prompt the user only once if they don't have the global object security policy setting disabled but will not close the document. The prompt will appear once per document, not per device. You then run the risk of the user reaching their PDF limit if they did not follow the instructions.
- NoPromptAndNoClose - this will neither prompt the user nor close the document and is only recommended in scenarios where you DO NOT require setting a PDF limit for users. When set, a new deviceId/Tracking Id is generated when the user first opens the document; a new deviceId is generated if the user then renames and opens that document; and a new deviceId is generated if the user moves the document to a new folder and opens it from there. So be aware that a small device limit (1 or 2) can be exceeded by a user who simply renames or moves the Protected PDF on disk.