Professional Documents
Culture Documents
Creating and Deploying Active Directory Rights Management Services Templates Step-by-Step Guide
Creating and Deploying Active Directory Rights Management Services Templates Step-by-Step Guide
Abstract
This step-by-step guide provides instructions for setting up a test environment for creating and
deploying Active Directory Rights Management Services (AD RMS) rights policy templates on the
Windows Server 2008 operating system.
This document supports a preliminary release of a software product that may be changed
substantially prior to final commercial release, and is the confidential and proprietary information
of Microsoft Corporation. It is disclosed pursuant to a non-disclosure agreement between the
recipient and Microsoft. This document is provided for informational purposes only and Microsoft
makes no warranties, either express or implied, in this document. Information in this document,
including URL and other Internet Web site references, is subject to change without notice. The
entire risk of the use or the results from the use of this document remains with the user. Unless
otherwise noted, the example companies, organizations, products, domain names, e-mail
addresses, logos, people, places, and events depicted herein are fictitious, and no association
with any real company, organization, product, domain name, e-mail address, logo, person, place,
or event is intended or should be inferred. Complying with all applicable copyright laws is the
responsibility of the user. Without limiting the rights under copyright, no part of this document may
be reproduced, stored in or introduced into a retrieval system, or transmitted in any form or by
any means (electronic, mechanical, photocopying, recording, or otherwise), or for any purpose,
without the express written permission of Microsoft Corporation.
Microsoft may have patents, patent applications, trademarks, copyrights, or other intellectual
property rights covering subject matter in this document. Except as expressly provided in any
written license agreement from Microsoft, the furnishing of this document does not give you any
license to these patents, trademarks, copyrights, or other intellectual property.
2008 Microsoft Corporation. All rights reserved.
Active Directory, Microsoft, MS-DOS, Vista, Windows, Windows NT, and Windows Server are
either registered trademarks or trademarks of Microsoft Corporation in the United States and/or
other countries.
All other trademarks are property of their respective owners.
Contents
Creating and Deploying Active Directory Rights Management Services Rights Policy Templates
Step-by-Step Guide..................................................................................................................... 5
About this Guide.......................................................................................................................... 5
What This Guide Does Not Provide......................................................................................... 5
Deploying AD RMS in a Test Environment..................................................................................6
Step 1: Creating a Shared Folder on the AD RMS Cluster.............................................................7
Step 2: Creating an AD RMS Rights Policy Template.....................................................................8
Step 3: Configuring the AD RMS client........................................................................................... 9
Step 4: Verifying AD RMS Functionality using ADRMS-CLNT......................................................10
Guidance for setting up and configuring AD RMS in either a production or test environment.
This guide assumes that AD RMS is already configured for a test environment. For more
information about configuring AD RMS, see Windows Server Active Directory Rights
Management Services Step-by-Step Guide (http://go.microsoft.com/fwlink/?LinkId=72134).
Complete technical reference for AD RMS or deploying AD RMS templates within your
organization. In a large organization, Systems Management Server (SMS) or Group Policy
can provide a way to deploy AD RMS rights policy templates to several workstations at a
time.
Operating System
ADRMS-SRV
CPANDL-DC
ADRMS-DB
ADRMS-CLNT
Windows Vista
The computers form a private intranet and are connected through a common hub or Layer 2
switch. This configuration can be emulated in a virtual server environment if desired. This step-bystep exercise uses private addresses throughout the test lab configuration. The private network
ID 10.0.0.0/24 is used for the intranet. The domain controller is named CPANDL-DC for the
domain named cpandl.com.
The following figure shows the configuration of the test environment:
9. Click OK twice.
10. Click the Security tab, and then click Edit.
11. Click Add, in the Enter the object names to select box type CPANDL\ADRMSSRVC,
and then click OK.
12. Click ADRMSSRVC (ADRMSSRVC@cpandl.com), and then, in the Permissions
forADRMSSRVC box, select the Modify check box in the Allow column, and then click
OK.
13. Click Close.
11