Recently in Advanced Customization Wizard Tips Category

Installing Both Reader and Acrobat on the Same Machine

| No Comments
Share

I’ve been traveling for the last 3 weeks talking to end users and IT managers and the same few topics are coming up day after day. One issue in particular has me doing a strange little dance…paraphrasing…

We have Reader on our standard desktop but some people have Acrobat too. We’re running into trouble with [fill in the blank]. Should we have uninstalled Reader first?

Installing Both Reader and Acrobat on the Same Machine

New Enterprise IT Tools for Adobe Acrobat and Reader

| 1 Comment
Share

To help IT professionals, we are releasing a number of these resources free of charge, but without an official support program. Like other technologies on Adobe Labs, these tools are not finished products, but rather beta or prototype utilities that may work in your particular environment.

The following list comprises all of the resources that are currently available to download. More tools/utilities are expected to be added in the future.

JavaScript Blacklist Framework for Adobe Acrobat or Reader — This utility allows IT to modify the JS API blacklist for any Acrobat product. It allows simple visual inspection and modification of tBlacklist in the registry’s HKLM hive without opening and editing the registry manually.

Multi-User Reader Desktop (MURD) — The MURD tool allows IT to install multiple Reader versions, create custom file extensions and mime types, and control the version that opens what type of file.

You can find these tools on Adobe Labs

Advanced Customization Wizard: Show Page

| 2 Comments
Share

The presentation below is the second in a series that covers topics relevant to IT, this one covers advanced tips and tricks for the Adobe Customization Wizard X. Click on the image preview to open the presentation in another window.

Additional Resources

You can view the full transcript and slides after the jump.

Advanced Customization Wizard: Show Page

Adobe Acrobat X and Creating FIPS Compliance

| No Comments
Share

I’ve been getting a few questions lately asking if Acrobat X is FIPS compliant. The short answer is “Yes” – but, on Windows, IT Administrators can take even further action to put Acrobat into FIPS mode which will actually change the way Acrobat X works to help keep users compliant. The information below is an excerpt from the Digital Signatures & Rights Management in the Acrobat Family of Products.

Acrobat and Reader can provide encryption via the Federal Information Processing Standard (FIPS) 140-2 mode. FIPS 140 is a cryptographic security standard used by the federal government and others requiring higher degrees of security. Through registry configuration it is possible to force Acrobat to use only FIPS 140-certified cryptographic libraries. Doing so only affects the production and not the
consumption of PDF files, and it only affects encryption and digital signature workflows.

When the FIPS mode is on, Acrobat X encryption uses the Crypto-C ME 3.0.0.1 encryption module with FIPS 140-2 validation certificate 1092.

FIPS mode changes the default behavior of Acrobat X in the following ways:

  • FIPS-compliant algorithms are always used.
  • Self-signed certificate creation is disabled. In FIPS mode, users cannot create self-signed certificates.
  • Signing with non-FIPS supported algorithms results in an error message; that is, signing fails if the
    document hash algorithm (digest method) is set to MD5 or RIPEMD160.
  • Password security is turned off. Users can apply certificate or Adobe LiveCycle Right Management
    Server security using the AES encryption algorithm to a document, but password encryption is
    disabled.
  • When applying certificate security, the RC4 encryption algorithm is not allowed.
  • Documents protected with non-FIPS compliant algorithms cannot be saved.

FIPS mode cannot be toggled from the preferences panel; you must use the registry. To turn FIPS mode on set the following registry key to 1.

HKEY_CURRENT_USER\Software\Adobe\Adobe Acrobat\10.0\AVGeneral\bFIPSMode

This setting is a Windows only feature. On the Mac, enabling the FIPS mode plist setting will limit the supported algorithms for new documents to those allowed per FIPS standards but due to lack of FIPS certified cryptography options on the Mac platform, Acrobat and Reader do not currently use a FIPS certified implementation.

Download the “Administrator’s Information Manager” for a list of all registry and plist options and documentation.

Adobe Reader and Google Chrome

| 14 Comments
Share

The latest release of Google Chrome includes the Chrome PDF Viewer which won’t properly display some PDF files like Dynamic Forms and PDF Portfolios. While Google Chrome is not a supported browser, the Adobe PDF Plug-In For Firefox and Netscape 10.0.0 does actually work with Chrome on Windows. Unfortunately, there is no solution for the Mac at this time.

If you are running Windows and you want to display your PDF files in Chrome using the Adobe Reader, you can easily disable the native viewer. Just type “about:plugins” in address bar and then disable the Chrome PDF Viewer. You don’t even need to restart.

Share

A new TechNote has been published that is a rapidly evolving portal for administrator-centric documentation and tools that provides:

  • A formal enterprise administration guide in PDF format.
  • Comprehensive details about enterprise deployments, configuration, and security.
  • A living list of new topics added to the admin guide.
  • Links to other major admin-centric libraries.
  • Links to Tools

This is an excellent resource for anyone who needs to administer deployments of Adobe Acrobat and Reader. Go to the link below and bookmark it!

Check out Enterprise Administration of the Acrobat Family of Products

Deploying Acrobat to Import Security Settings from a Server

| No Comments
Share

Over the past few weeks I’ve had the same conversation with several customers who are trying to deploy Acrobat and Reader using the Customization Wizard but know that they will need to change the security configuration soon after deployment and then again throughout the lifetime of that particular desktop image.

Deploying Acrobat to Import Security Settings from a Server