The default security settings in Acrobat are compatible with EFS so there is no need to alter these settings.
These settings are:
- Protected View off
- Enhanced Security is unchecked
- Automatically trust sites from my Win OS Security zones is checked
Adobe Acrobat uses the term "digital ID" for digital certificate.
To prevent unauthorized access:
Link your digital ID only to the copy of your certificate (.pfx file) on your computer e.g. in C:\MyCertificate, and not to a copy on shared drives where others may have unauthorized access to your certificate file. Do not share your password.
Leave your digital ID at the Acrobat Security default so there is a password prompt every time you apply your electronic signature to a document
Store your certificate on a removable device e.g. flash drive F:\MyRemovableCertificate instead of a permanent drive such as C:\MyCertificate and link to that copy when setting up your digital ID
To store a certificate externally, you must have Acrobat-level security activated.
Change your digital certificate password occasionally.
If you are comfortable with the physical and Windows-level security measures you have in place, you may have no need for additional Acrobat-level security. At the Windows level, all computer and network should be controlled through user IDs and passwords. Workstations should be set to lock up when left idle. However, if you have security concerns, you should leave Acrobat Security at the default to have it prompt you for a password whenever you apply an electronic signature.