I have a Biztalk-Service running under a specific user account. Is it possible to configure the file and folder encryption policy, such that the output files written to a specific directory will encrypted? If I logon interactively with the service account and logon to Endpoint Encryption it works fine (of course). But since the service cannot logon to Endpoint Encryption the files cannot be written, although the keys should be cached.
I would guess that the cache is cleared when you logout of the interactive session. Do the files need to be encrypted that that service requires? If not, set an exclusion for those files/folders. You may need to manually decrypt after the exclusion is defined.