Creating AD RMS

In this multi Part Articles,I have been covered in part 1 how to install and configure AD RMS.

Part 1: AD RMS Installation and Configuration in Server 2012 R2

In Continuation to that, First we need to enable the Anonymous Authentications. Open IIS Manager Console 

38

Under the Default Web Site–> _wmcs–> Authentication–> Click on Anonymous Authentication and Enable

40

Right Click on licensing and select Content View–> Authentication–> Anonymous Authentication and Enable

41

Open Active Directory Rights Management Services. Here You have to use RMSSVC as login account as we have assigned it as Service account.

43

Select Super Users and Enable Super Users

Once Enabled Add the Super users DL Group. It is basically Admin Group who will be having rights to control the RMS Services.

64

So far so good. Here we will see how to create RMS Template and how to publish it to the Domain users

Click on Rights Policy Template and click on Create Distributed Rights Management template

Click on Add 

45

Select English and Name for the Template and give the description for it.

46

Click on Next 

47

Specify the user/Group who can user this template. You need to select everyone if you are going to use it for all the domain users.

48

Assign the Rights for the users

49

Specify the Expiration policy.

50

Specify the Extended policy 

52

Click on Finish without selecting the Revocation Policy.

53

Now you can see the template under Rights Policy Template.

54

Great. Now will show you how to export and publish the template use SMB Share. First we need to create a folder in RMS Server. Run the below PowerShell command to create a Folder

 New-Item c:\RMSTemplates -ItemType Directory

55

Once created the folder run the below command to share the folder as well as assign the fullrights to RMS Service account. Run the below PowerShell command

 New-SmbShare -Name RMSTEMPLATES -Path c:\RMSTemplates -FullAccess windowstechpro\RMSSVC

56

Right click on Rights management template and select Properties.

57

Enable the Export Option and browse the SMB path which we create earlier and apply

59

Now you could see the Distributed rights policy options

60

In the SMB Share folder, You can see that XML file is available and contains the template which we created.

61

Select the Applications and Enable the Application Exclusions. If you want to exclude any applications to use the RMS, You could do it here.

62

#ADRMS #RMS

Author

Leave a comment

Your email address will not be published. Required fields are marked *