We have created a new role called Encryption Manager. We have given this role EVERY right imaginable and it cannot edit policies.
Most specifically, this role is called Encryption Manager as said above and we have given it rights to policies in all the encryption heiarchy to no avail.
Rich S.Message was edited by: rsterling (spelling corrections) on 12/15/10 11:04:22 PM CST
The policies must be created by (or copied over to) the "Encryption Manager" user profile. Once this is done, the new profile set now owns them and can make modifications.