Quantcast
Channel: Active Directory Rights Management Service(On premise) forum
Viewing all 1025 articles
Browse latest View live

Outlook 2007 connection issues to Exchange 2013

May 14, 2018, 12:40 pm
$
0
0

Hi im experiencing a rather strange problem with some Outlook 2007 clients.

I have a Exchange 2007 infrastructure in coexistance with Exchange 2013:

  • All DNS records correctly setted up
  • All URLs and autodiscovery correctly setted up
  • 75 clients with Outlook 2007 and 2013 were migrated to Exch 2013 and are working correctly

All seems right from the infrastructure side, but I m having 6 mbxs (migrated to Exch 2013) that cannot connect.

Running outlook /rpcdiags shows:

  • Directory - Connected to FQDN of DC [Here I should have mbxguid] 
  • Mail - Connecting... to [mbxguid]@[domain] - This connection retries several times


The mail connection retries several times till it fails with: Cannot start microsoft outlook. Cannot open outlook window....

So.. I already check the usual suspects:

  • Outlook 2007 has the Nov 2012 patch
  • Client can resolve all URLs
  • Encypt connection is enabled
  • Correct Outlook Anywhere settings

After that I repaired the profile and outlook connected, to my surprise when I checked rpcdiag I got:

  • Directory - Connected to FQDN of DC 
  • Mail - Connected to FQDN of Exch 2013 MBX Server 

Never saw a client connecting with FQDN to an Exch 2013....

The next day the error shows up again and the temporal solution is to repair the profile, and having the same results.

I check if the "DS Server" value in HKEY_CURRENT_USER\Software\Microsoft\Exchange\Exchange Provider was configured on the client and server side, but it was not present:

https://support.microsoft.com/en-us/help/319206/how-to-configure-outlook-to-a-specific-global-catalog-server-or-to-the

Why would those particular Outlooks try to connect with the FQDN instead of the MBX Guid?

Regards


Search

SCP - RMS Error

June 3, 2018, 5:26 am
$
0
0

Hi, I'm having the same issue. I installed RMS a year ago and left it without completing. When I try to rework on this I get the below error.

"The SCP is registered but the root cluster cannot be contacted. You can still join an existing cluster. The request failed with HTTP status 404: Not Found"

I'm new to the AD server and have less knowledge in ADSI Edit. 

Please guide with step by step instruction.

Thank you.

Best regards,

Sujith.

User could not open rms file though VPN, windows 2012 R2 RMS SERVER .

June 4, 2018, 11:16 pm
$
0
0

Hi all;

I migrated to ADRMS 2008 2012r2 last week, When I finished migration, some People can not open  RMS file  vpn.

But strangely, other people can open it.

1.If user log on the computer ,which joined domain , with a domain account, he can not open rms file.

2.If user log on the computer ,which joined domain , with local account, he can open rms file.

 I don't know where my configuration is wrong, please help me ~~~

Change ownership RMS protected files

June 5, 2018, 6:16 am
$
0
0

Hi,

Is there a possibility to migrate the ownership (give full access) to another user in multiple files at once. We have a staff member moved to a different department, and we need to remove his access/ownership to hundred of documents, and transfer full access rights to another staff member.

Regards,

alfa21

RMS iOS SDK 4.2 - How to clear caching of policies.

March 16, 2016, 2:08 am
$
0
0

Hi, 

I am integrating RMS iOS SDK 4.2 with our app. I wanted to know whether is it possible to take control over the cached policies for the user. Basically we are facing problem when ever user has more than one azure email-id and wants to login and check with all different userids.

Thanks for the hep.

How to manage private keys of RMS users

June 11, 2018, 6:37 am
$
0
0

There are private keys of RMS users in database [DRMS_Config_adrms_..._com_443] table [UD_Users]. According to documentation https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-rights-management-services-rms/cc747760(v=ws.10) field [b_KeyData] contains "Encrypted user public/private key".

I would like to "export / import / backup / restore / move" the private keys, but there absent any information how the private keys are encrypted. It is not clear what the value of the field [b_KeyData] depends on.  Where is placed the encryption key, what is the change logic of the encryption key.

It is unpleasant to use soft when we do not understand its logic entirely. Does anybody have information about the content of the field [b_KeyData]?

AD RMS SDK 2.1 C# managed API File Stream Encryption

June 18, 2018, 2:25 am
$
0
0

Hello Team,

I  am working with the AD RMS SDK 2.1

I have Open file stream in to console application and file is located in c drive.

I am using Method "IpcfEncryptFileStream()" to encrypt the file y file stream.

The parameter is passed by me as below.

SafeFileApiNativeMethods.IpcfEncryptFileStream(connStream, filepath, template.TemplateId, SafeFileApiNativeMethods.EncryptFlags.IPCF_EF_FLAG_DEFAULT, ref connOutputStream, null);

Here 

connStream : My File Stream

fileapath : Physical file path

template : Template from the RMS server

Flag : default

outputstream : i have pass stream.null.

While running the console i am facing error message "An unexpected error occurred" with error  code "-2147286787".

Can you guys help me out what should be parameter for method IpcfEncryptFileStream() ? How can i pass the ref outputstream parameter in this method.

Thank You,

Dipen Shah



AD RMS SDK 2.1 C# managed API File is not being IRM Enable Using Method SafeFileApiNativeMethods.IpcfEncryptFileStream

June 19, 2018, 10:42 pm
$
0
0

Hi Team,

I am trying to do IRM Enabled on file which is located in physical location in c drive and it is simply .docx document.

I want to achieve the goal using the method  "IpcfEncryptFileStream()".

Problem Statement:

I am passing the Input stream and out put stream as expected and function gives me the output stream returned which is IRM protected. When i open the file in Word 2013 it is not asking me the username and credentials. It means that file is not IRM enabled. 

Should i do override the returned stream to the existing file?I have tried this and i found that some junk characters and XML strings added in to the file.

How can i save IRM Protected Memory Stream in to file?

Code is as below.

filePath = @"C:\Users\svc_devdb\Desktop\teststream.docx";
Stream connStream = File.OpenRead(filepath);
Stream connOutputStream = new MemoryStream();
                        SafeFileApiNativeMethods.IpcfEncryptFileStream(
 inputStream: connStream,
 inputFilePath: filepath,
 templateId: template.TemplateId,
 flags:
SafeFileApiNativeMethods.EncryptFlags.IPCF_EF_FLAG_DEFAULT,
 outputStream: ref connOutputStream,
 ipcContext: null);

// Once function is called successfully i am trying to write the stream using below code.

connStream.Close();
var f = new FileStream(filepath, FileMode.Create, FileAccess.Write);
 connOutputStream.CopyTo(f);
 f.Dispose();
 connOutputStream.Close()

Team, Can you help me out how can i achieve this goal  ?

Thanks,

Dipen Shah

Search

Issue with SMS codes on Mac

June 22, 2018, 3:48 am
$
0
0 
We have a problem with basic authentication for IRM encrypted documents (Office 2011). 
If you select the "Save Password" checkbox on Mac OS, 
the entered user name and password are not sent to the server in HTTP Header Authorization. 
How to solve this?


upgrade rms 2008

June 24, 2018, 10:17 am
$
0
0

hi 

any idea how to upgrade RMS 2008 R2 to 2012

is there any video you can share or step by step procedure 

Help.Me

Azure Info Protection - Set Default Label based upon Application

June 28, 2018, 8:19 am
$
0
0

Is it possible with Azure Info Protection to set the Default Label for Documents (Word, Excel, etc.) to be one label and Outlook to have another label. We would like to set all documents to only have the permissions to be accessible by users within the organisation, and then a second Default Label for Outlook emails that doesn't restrict to just internal users.

Could not get MSIPC Templates from IpcGetTemplateIssuerList method in ADRMS 2.1 client on server

July 5, 2018, 11:12 pm
$
0
0

Hi All,

We could not extract MSIPC Templates from IpcGetTemplateIssuerList method in ADRMS 2.1 client on server ,on local desktop encryption is working fine.

Can you please help us in this issue.

Restrict from copying but read

July 8, 2018, 5:33 am
$
0
0

We have Windows server 2012 DCs.


We need to create a shared folder. We want to share this to domain users who use workgroup computers. We want to restrict the user to only see and open the files and folders. We want to restrict them from copying or printing it.


Please let me know if ADRMS can do this, please let me know about the license requirement also.

if ADRMS is capable of doing this we will need this AD RMS to be enabled for 100 users. Do we need to purchase 100 AD RMS licenses?

Licensing for ADRMS

February 22, 2017, 6:04 am
$
0
0

Dear All,

I was exploring on this role of windows server AD-RMS, which is a very cool Role. I wanted to understand the Licensing issue about AD-RMS.

Do i need extra licensing for this despite having the windows License that I have bought already?

I need to have correct information before presenting this to my bosses.

Your guidance will be greatly appreated.

Regards

Michael

Office Templates Preloaded

July 9, 2018, 10:31 pm
$
0
0

Hello there i have build a small VM lab with ADDS,ADCS on one server and ADRMS on the other. The RMS is configured succefuly with the templates and users now can create documents based on rms.

What i want to ask is possible to add the templates  to the office based on group policy of the AD so when a user starts a new document to be all ready an RMS restricted document without the user going though the  procedure doing it him/her self .  

Thank you.

Search

Duel Upgrade Windows 10 HDD to SSD and 32 bit to 64 bit.

July 15, 2018, 8:00 am
$
0
0

Some time ago I installed Windows 10 Pro 32 bit on my computer without any particular problems but the HDD I used is a bit slow so I would like to do a cold install of the 64 bit on an SSD, ON THE SAME COMPUTER. I will be deleting the 32 bit version as soon as the operation is completed. 

My question is this: Can I use the same License Key?

RMS Templates Preloaded on New Documents

July 15, 2018, 10:58 pm
$
0
0

Is there an option on Office 2016 on premises RMS when users create a new document the rms template to be loaded automatically with out user interaction ?


Difference between AD hoc RMS and RMS

July 17, 2018, 4:56 am
$
0
0

When subscribed for AADRMS, Microsoft provided me with 50,000 units of Ad hoc RMS license.

My questions:

1) What is the difference between these 2 and is ad-hoc RMS part of AIP and something that can be leveraged for encryption and protection?

2) Can i as an admin go ahead and provide adhoc RMS license as a standalone to user who are using per say F1 license for them

to encrypt the outbound emails by just putting-in the keyword 'encrypt' in subject line. 

NOTE: i have already configured previous version of OME to encrypt smtp traffic via ETR for my organization.

Active directory ACCESS DENIED,

July 5, 2017, 12:37 am
$
0
0

Hi hello cind of new here but i have a problem that 4 system admins cant figure out, but its probly something easy.

the problem:

User get promted to change password by windows because the old has expired.
User gets ACCESS DENIED when trying to change password.
User goes to either me or my collouges and tell us the problem and we change password for user without any trouble.

Its like this for every user if they arent admin in the domain, the check box for user cannot change his password is unchecked.

i have tried to delegete control to the ou so users can change and reset password.

we are sitting on
Win 2008 r2 domain controller  please help
4 sys admins

Where to find the latest MS documents for ADRMS?

August 12, 2018, 11:27 pm
$
0
0

Hi,

I am looking for the latest documents about ADRMS. By googling “ADRMS”, I find the following articles:

https://en.wikipedia.org/wiki/Active_Directory_Rights_Management_Services

https://searchwindowsserver.techtarget.com/definition/Microsoft-Active-Directory-Rights-Management-Services-AD-Rights-Management-Services

Both contain reference to MS official site, as below:

https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2012-R2-and-2012/hh831554(v=ws.11)

However, in the header part of the page, there is a line said “We’re no longer updating this content regularly. Check the Microsoft Product Lifecycle for information about how this product, service, technology, or API is supported.” And there is a button “Recommended Version”. I click the button, but that will just go to Windows server official site at https://docs.microsoft.com/en-us/windows-server/windows-server . No information about ADRMS any more.

Therefore, I just wonder where can I find the latest official documents about ADRMS?

Viewing all 1025 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>