CSS Blog |
Recently I encountered an odd authorization error while trying to enable Active Directory Rights Management Services (AD RMS) for an on premise Exchange 2010 server and thought the world might benefit from my experience in resolving the issue. After completing all the appropriate prerequisites for enabling AD RMS in Exchange, …
Continue readingUpdate Rollup 2 for Active Directory Federation Services (AD FS) 2.0, which was released last year, addresses five issues: Improves AD FS reliability when under load Adds a new setting to prevent the whr parameter from overwriting an existing home realm discovery cookie Incorporates a fix that prevents the AD …
Continue readingThere are many ways to create self-signed certificates; some require additional tools that are not typically available on a Windows server or use cryptic commands. This PowerShell script offers an easy way to create SSL certificates without requiring anything that isn’t typically installed on a Windows server. Note: You can …
Continue readingStunned is the word for it. There I was getting to know my new Samsung Galaxy Tab 2, a tablet running Android 4.0 (Ice Cream Sandwich). I configured the built-in Exchange ActiveSync client (using certificate-based authentication, but that’s a discussion for another day) and was browsing around the interface when …
Continue readingThe major challenge in an AD RMS implementation is not getting the infrastructure up and running or getting the client settings, files and application deployed to all users. It’s not making RMS available through your firewall or getting it working with your SharePoint server. No, the major challenge is getting …
Continue readingOne of the things we often run into while working on AD RMS deployments is customers who want to protect documents in formats other than those that are natively supported by AD RMS–Outlook, Word, Excel, PowerPoint, InfoPath and XPS Viewer. Common asks include PDFs, graphics such as JPEGs, and Visio documents. There are third party solutions that can integrate with AD RMS to provide protections on additional document formats, but they represent additional expense and effort. For a customer with just a few other files that need protecting, bringing in a third party solution may not be worth it. Enter Microsoft’s Generic File Protection Explorer.
Continue readingIn most corporate environments, when you roll out RMS to the client machines you’re talking about domain-joined machines that you are configuring via group policy, SCCM and similar desktop deployment tools. But what if you have a few users who need to have access to RMS-protected content from non-domain-joined clients? What if they need to apply rights-protections to content as well? With your custom templates no less, then what?
Continue readingSo you want to make some of your applications available using federation but you have multiple forests. What can you do? Well, if you have two-way trusts between your forests, you’re in luck, because AD FS works very well if you have two-way trusts between the forests. But what if you have only a one-way trust between forests? Then what?
Continue reading
Subscribe via RSS »
