Quantcast
Channel: Active Directory Rights Management Service(On premise) forum
Viewing all 1025 articles
Browse latest View live

Issues with RMS and OWA exchange 2010 Error: NeedsGroupIdentityActivation

May 1, 2014, 5:27 am
$
0
0

Hi All,

I am facing an issue with RMS that is driving me crazy.We have deployed RMS server in out existing Exchange 2010 SP3 RU4 environment and only thing that is not working properly is OWA. No matter what OS or browser we use, users always receive same error when trying to open protected message:

"The message you tried to open is protected with Information Rights Management. The Rights Management server isn't available to open this message. Try opening the message again. If the problem continues, contact your helpdesk.
 Show details

Error: NeedsGroupIdentityActivation
Code: UnknownFailure"

When I try to send message from OWA I can see and I can apply "Do Not Froward" template but when I clcikc button "Send" I receive an error "A problem occurred while you were trying to use your mailbox." 

What is interesting is that RMS works without issues in Outlook 2010.

What I have so far:

RMS server is Windows 2012 exchange servers are all 2008R2 all fully patched.

Test-IRMConfiguration reports PASS on all checks.

FederationMailbox is a member of SuperUsers,

FederationMailbox and Exchange Servers have access to ServerCertification.asmx

OWA VirtualDirectory has IRM enabled

InternalLicensingEnabled is $true in IRMConfiguration 

Opening a message in OWA triggers an error on CAS server that look like this: 2014-04-30T21:08:14.456Z,RacClc,Exception,,,NeedsGroupIdentityActivation [RightsManagementException],MessageId:<...>

Any help would be greatly appreciated. I have been fighting this for a week now an I hope I won't have to decommission server.

Search

AD related problem

March 10, 2014, 9:57 pm
$
0
0
i installed active directory on server 2012 standard edition build 9200 on hyper-v and on another hyperv i installed another server 2012 standard edition and made that as a secondary dns server.but after creating that,the reverse look up zone took records from master but the forward look up zone could not get records from master or primary server.i have enabled zone transfer option on both zones on the dnses of both the servers.but the problem can not be solved.please help

ADRMS and Distribution Groups

March 4, 2014, 8:08 am
$
0
0

Hello,

I have a strange behaviour with my AD RMS server.

When a person to restriction it works perfectly.

When adding a group, the members of this group cannot open the document.

If i add them individually, all works fine.

Any idea ?

From RMS to AD-RMS -- which upgrade option is better?

May 6, 2014, 11:36 pm
$
0
0

My current rights management services is on Server 2003 with SQL Server 2005. I plan on upgrading to AD-RMS and want to know which method is preferable. Currently the database resides on the same server as RMS so I want to separate the two into 2x Server 2012 R2 machines with one dedicated to AD-RMS and one dedicated as a SQL Server 2012 box.

After reading the technet articles, the migration process seems to assume you want to keep the SQL database intact on what ever server it is. This is not the case for me since we are getting rid of Server 2003 machines. For what I want to do, is it as simple as exporting the three databases attached to RMS and then importing them to the new SQL box? From there I can go ahead and follow the migration policies?

Or is that a no-no, and starting from scratch may be a better idea?

p.s. Migrating/Upgrading to Server 2008R2 isn't out of the question. I would just prefer to skip it since 2012 is my goal.

RMS error - Unable to cast object of Type 'System.Byte[]' to type 'System.String'

May 12, 2014, 2:04 am
$
0
0

Hi,

I'm experiencing an issue when trying to connect to RMS cluster through server manager. Error is:

Active Directory Rights Management Services could not complete the task because an error occurred. This error may be caused by variable conditions.

Details:

Exception message:

Unable to cast object of type 'System.Byte[]' to type 'System.String'.

Exception type:

System.Web.Services.Protocols.SoapExtension (Inner Exception: System.InvalidCastException)

I've re-installed server, I've reinstalled RMS role, I've tried with and w/o SSL connection to RMS but the error persists. OS is 2008R2 (updated), database is internal (test environment)... 

Any suggestions?

RMSBulk is not unprotecting digitally signed email messages in a pst

May 12, 2014, 7:23 pm
$
0
0

The RMSBulk.exe tool is not unprotecting pst messages that are digitally signed.  Any recommendations on how to get this to work? 

The tool also does not unprotect attachment that are RMS messages (so a protected message attached to a protected message).  Is this also by design?

Thanks

windows 2012 R2 AD RMS SQL Server Requirements

May 11, 2014, 1:10 am
$
0
0

what is the support matrix for windows 2012 R2 ADRMS SQL Servers. is it supported SQL 2012 SP1 . as i found, windows 2012 ADRMS will support SQL 2012 ( not SP1 ), but i am planning to deploy windows 2012 R2 ADRMS and couldn't find support matrix for SQL .

indunil

windows 2012 R2 ADRMS with Windows 7 Client

May 14, 2014, 6:08 am
$
0
0

hi guys

i have setup AD RMD (windows 2012 R2 ) and it's working fine with windows 8 and windows 8.1 users. but when i try to use windows 7 machines, i can't connected to AD RMS from Applications ( MS Word , outlook ), i found that it's trying to connect Microsoft ID or live ID to connect and couldn't find on-promise ADRMS Servers. i added intranet site on IE ,  office is 2010 and does it required any SP ?

thank you

induil

Search

Request - PhD

May 15, 2014, 11:59 pm
$
0
0

Dear,

I am a PhD student of Informatics at the Faculty of Electrical Engineering and Computer Science (FERI) in Slovenia.

I need your help for a research project. I kindly ask you to fill out a questionnaire on the topic "Digital Rights Management Systems for Organizations". This questionnaire consists of 34 questions and should take approximately 9 minutes to complete.

The aforementioned questionnaire can be found at:

https://www.1ka.si/a/41557

Thank you for your time and help.

Regards, Urška Lah


Will Exchange 2010 be supported for Windows Server 2012 R2 RMS ?

May 16, 2014, 7:17 pm
$
0
0
Will  Exchange 2010 be supported for Windows Server 2012 R2 RMS ?

Jason

Azure RMS Group user with Ad-hoc policy

May 21, 2014, 11:54 pm
$
0
0
Hi,

In Azure RMS, the group users are unable to open the encrypted documants if the file is encrypted using ad-hoc policy(my policy)
But, the same group users were able to open the encrypted document incase if the file is encrypted using templates(company policy)

so, it would be great if you assist us in resolving this issue.
  

Can I have SQL 2012 Availabilty groups for AD RMS Server

May 22, 2014, 6:17 am
$
0
0
I'm solutioning SQL High Availability for AD RMS Server, I would like to know the supported SQL High Availabilty options. I'm thinking of having SQL2012 Availability groups for AD RMS...
Regards...Nagaraj

no "Trust Windows Live ID" in Action Pane

May 22, 2014, 7:12 am
$
0
0

Hi Expert,

Environment: Windows Server 2012 R2 ADRMS Cluster (2 servers) + 1 database server.

I followed this article: http://technet.microsoft.com/en-us/library/cc753056.aspx

But I cannot find "Trust Windows Live ID" in Actions pane, any tips for this? Thanks in advance.

To trust Windows Live ID-based rights account certificates

  1. Log on to a server in the AD RMS cluster.

  2. Open the Active Directory Rights Management Services console and expand the AD RMS cluster.

  3. In the console tree, expand      Trust Policies  , and then click     Trusted User Domains  .

  4. In the      Actions   pane, click     Trust Windows Live ID  . The Windows Live ID certificate appears in the     Trusted user domain   list in the results pane.

amoschb

ADRMS Client Issue ; User has not been authenticated

May 24, 2014, 2:19 am
$
0
0

Hi friends,

When I try to protect the document, I am getting the below message from windows 7 client when using internally.

"The operation being requested was not performed because the user has not been authenticated".

SSL certificate is provide by certificate authority.

Add the ADRMS url in local internet site.

User has email address and user able to access the license and certificate URL.

Is there any other *.asmx file right need to be provided.

Can any please suggest some solution.

Regards,

Sridhar

Sridhar

Unable to open an ADRMS protected e-mail.

May 19, 2014, 11:53 pm
$
0
0

Hello,

Nobody is able to open an ADRMS protected e-mail sent by some one to entire group.

E-mail has come with attachment of message.rpmsg

I am able to create new protected e-mails and users are able to read fine.

I am able to open it with super account, how should I start troubleshooting with this.

under reports I can see lots of failed request to "Acquire license"

What does this error means:

Microsoft.DigitalRightsManagement.Licensing.NoRightsForRequestedPrincipalException: The publish license contains no rights for the requested principal.


Thanks in advance



Search

AD RMS Distributed Templates - Maximum Number of Template see from Client Machines

May 25, 2014, 12:53 am
$
0
0

hi

my questions is, are there any limitations to see AD RMS Template from Client End ( E.g. Ms Word - i can see maximum 20 templates), my Templates are working fine. but i can see only 20 templates from client Machines, if i create new template, if the template name is started with Letter before which ever existing one

(e.g, Template i can see from MS Words)

Contoso- Tem01(first Template )

Contoso- Temo03

Edit- temp-0

...

Print (20 th Template )

if i create template with name B(C is first Letter for my case ), it will appear on template, also if i create D, or before P, it will apprear on List, also Last Template will be disappear . as i noticed, only 20 templates i can see from Client machines. is this default , if it's can i change it to different number

indunil 

Architecture Considerations with AD RMS

May 22, 2014, 10:54 pm
$
0
0

Hi,

I'm looking to implement an AD RMS in an organization, and would like to find out more details on some architectures that I have come up with and hopefully some advice and which is better.

Architecture 1: 2 Physical Servers for AD RMS and MSSQL
Of course, we know that this is the most ideal architecture, but it is not cost-efficient for the organization, leading to the concepts of the following architectures.

Architecture 2: 2 Virtual (VMWare) Servers for AD RMS and MSSQL
What are the implications of using a virtual server for production?

Architecture 3: 1 Physical Servers for AD RMS and MSSQL
I know it is possible to install AD RMS and MSSQL in a single server (regardless of bad practices), but I would like to know the implications and if it will cause any underlying or prospective problems.

Architecture 4: 1 Virtual (VMWare) Servers for AD RMS and MSSQL

Most ideal in terms of cost, but what are the implications by doing so?

Thanks in advance for any advice!

Setting up RMS in Server 2012 R2

May 23, 2014, 11:05 am
$
0
0
I deployed RMS on a 2012 R2 server in my domain. I created some templates and setup a machine to obtain the templates. I also confirmed that the templates have been deployed to this machine. I have the DNS records created for the RMS server. However when I try to protect a word document or an email in Outlook I receive this error. "No logged on Office Users are configured for Information Rights Management (IRM)." I'm not sure what I'm missing so any help would be appreciated.

Vincent Sprague

Can a Web Solution open PDF files encrpted by RMS?

May 28, 2014, 8:47 am
$
0
0

We have a PDF Web Viewer solution for SharePoint(on promise).  After the solution deployment, PDFs in the library of SharePoint can be opened in browser directly.

But many customer asks for the requirement about open PDFs encrypted by RMS.

So how can we make the PDF Web Viewer support to open PDF encrypted by RMS? What SDK we can refer?

Setup RMS for entire Share

June 2, 2014, 1:18 pm
$
0
0
I have setup AD RMS in 2012 R2, and I'm able to set permissions on individual Office documents. However I would like to be able to blanket entire network shares with RMS. This would include txt files and other non-Office files. Is that possible with RMS and if so can someone point me to documentation for setting it up. If it's not possible is there someway of doing it?

Vincent Sprague

Viewing all 1025 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>