In this multi Part Articles,I have been covered in part 1 how to install and configure AD RMS.
Part 1: AD RMS Installation and Configuration in Server 2012 R2
In Continuation to that, First we need to enable the Anonymous Authentications. Open IIS Manager Console
Under the Default Web Site–> _wmcs–> Authentication–> Click on Anonymous Authentication and Enable
Right Click on licensing and select Content View–> Authentication–> Anonymous Authentication and Enable
Open Active Directory Rights Management Services. Here You have to use RMSSVC as login account as we have assigned it as Service account.
Select Super Users and Enable Super Users
Once Enabled Add the Super users DL Group. It is basically Admin Group who will be having rights to control the RMS Services.
So far so good. Here we will see how to create RMS Template and how to publish it to the Domain users
Click on Rights Policy Template and click on Create Distributed Rights Management template
Click on Add
Select English and Name for the Template and give the description for it.
Click on Next
Specify the user/Group who can user this template. You need to select everyone if you are going to use it for all the domain users.
Assign the Rights for the users
Specify the Expiration policy.
Specify the Extended policy
Click on Finish without selecting the Revocation Policy.
Now you can see the template under Rights Policy Template.
Great. Now will show you how to export and publish the template use SMB Share. First we need to create a folder in RMS Server. Run the below PowerShell command to create a Folder
New-Item c:\RMSTemplates -ItemType Directory
Once created the folder run the below command to share the folder as well as assign the fullrights to RMS Service account. Run the below PowerShell command
New-SmbShare -Name RMSTEMPLATES -Path c:\RMSTemplates -FullAccess windowstechpro\RMSSVC
Right click on Rights management template and select Properties.
Enable the Export Option and browse the SMB path which we create earlier and apply
Now you could see the Distributed rights policy options
In the SMB Share folder, You can see that XML file is available and contains the template which we created.
Select the Applications and Enable the Application Exclusions. If you want to exclude any applications to use the RMS, You could do it here.