MOC 50403 - Implementing Active Directory Rights Management Services with Exchange and SharePoint

This four-day Implementing Active Directory Rights Management Services with Exchange and SharePoint training class provides students with the knowledge and skills to deploy Microsoft® Active Directory® Rights Management Services (AD RMS), and to understand the role AD RMS plays in a wider infrastructure and how it interacts with other Microsoft® technologies.

This course is intended for experienced systems administrators who have working experience and background knowledge of Windows Server® 2008, and a basic understanding of Active Directory, IIS, Microsoft® SQL Server®, and Microsoft® Exchange Server technologies. Basic knowledge of DNS, general networking, and PKI principles is also helpful.

  Microsoft Certified Partner

Webucator is a Microsoft Certified Partner for Learning Solutions (CPLS). This class uses official Microsoft courseware and will be delivered by a Microsoft Certified Trainer (MCT).

Goals
  1. Understand AD RMS architecture, and the role the product plays as part of a wider infrastructure.
  2. Understand the AD RMS interaction model with other Microsoft technologies.
  3. Install and provision AD RMS and understand installation pre requisites and best practices.
  4. Understand how several other Microsoft technologies use AD RMS to protect documents and email messages.
  5. Understand how to use AD RMS on server applications such as Microsoft® Office SharePoint® Server and Microsoft Exchange Server.
  6. Create, manage, and distribute rights policy templates as AD RMS administrators.
  7. Understand the different trust relationships that can extend AD RMS protection beyond your infrastructure.
  8. Troubleshoot common issues in the core infrastructure, product installation, and product usage.
Outline
  1. Why Rights Management?
    1. A Bit of History
    2. Business Reasons for AD RMS
    3. What AD RMS Does
    4. AD RMS Usage Scenarios
    5. AD RMS Technology Overview
    6. AD RMS in Windows Server 2008 R2 and Windows 7
    7. Lab: AD RMS Demonstration
      1. User experience protecting Microsoft Office–based documents.
  2. AD RMS Architecture
    1. AD RMS Components Overview
    2. AD RMS Bootstrapping Process
    3. AD RMS Publishing and Licensing Process
    4. AD RMS Service Connection Point (SCP)
    5. AD RMS Topology
    6. AD RMS Components Details
  3. AD RMS Installation and Provisioning
    1. AD RMS Requirements
    2. AD RMS Prerequisites
    3. Installing and Provisioning AD RMS
    4. AD RMS Server Installation Best Practices
    5. Migrating RMS to AD RMS
    6. Lab: Creating the AD RMS Service Account
      1. Create an AD RMS Service Account
    7. Lab: Installing and Provisioning AD RMS
      1. Install and provision AD RMS
  4. Information Rights Management on Desktop Applications
    1. Operating System Versions and AD RMS Clients
    2. Microsoft Office IRM
    3. XPS IRM
    4. Windows Mobile 6.0 IRM
    5. RM Add-on for Internet Explorer and Rights-Managed HTML (RMH)
    6. Office Viewers and AD RMS
    7. IRM Client Registry Settings
    8. Lab: Protecting and Consuming AD RMS Protected Documents
      1. Protect and Consume AD RMS Protected Documents
    9. Lab: Creating and Consuming AD RMS Content Using Microsoft Outlook 2007
      1. Create and Consume AD RMS Content Using Microsoft Outlook 2007
    10. Lab: Protecting and Consuming Content Using XPS
      1. Protect and Consume Content Using XPS
    11. Lab: Consuming Content Using the Rights Management Add-on for Internet Explorer
      1. Consume Content Using the Rights Management Add-on for Internet Explorer
    12. Lab: Using Active Directory Security Groups
      1. Using Active Directory Security Groups
  5. Rights Policy Templates
    1. Introduction to Rights Policy Templates
    2. Creating Rights Policy Templates
    3. Protecting Content Using Templates
    4. Consuming Content Protected by Templates
    5. Managing Rights Policy Templates
    6. Template Distribution Strategy
    7. Lab: Creating and Using a Rights Policy Template
      1. Create and Use a Rights Policy Template
    8. Lab: Modifying Existing Templates
      1. Modify Existing Templates
    9. Lab: Distribute a Rights Policy Template
      1. Distribute a Rights Policy Template
  6. Information Rights Management on Server Applications
    1. Enabling MOSS IRM
    2. Configuring MOSS IRM on Document Libraries
    3. Consuming Content using MOSS IRM
  7. Lab: Integrating AD RMS and Exchange Server 2010
    1. Using OWA without Microsoft Exchange IRM integration
    2. Configuring Microsoft Exchange Server 2010 and AD RMS integration
    3. Implementing and validating Microsoft Exchange Server 2010 and AD RMS integration
  8. Lab: Integrating AD RMS with Bulk Protection Tool
    1. Use Bulk Protection Tool to decrypt protected content
    2. Use Bulk Protection Tool to Protect content using AD RMS Templates
  9. Lab: Protect information Automatically Integrating AD RMS with FCI and Bulk Protection Tool
    1. Setup environment for FCI and AD RMS bulk protection
    2. Create classification property and rules for Contoso documents
    3. Create file management tasks to restrict access to low and high business impact information
    4. Verify FCI and AD RMS bulk protection functionality
  • Administering AD RMS
    1. The AD RMS Administration Console
    2. New AD RMS Administration Roles
    3. Rights Account Certificate Policies
    4. Exclusion Policies
    5. Revocation
    6. The Super Users Group
    7. Lab: AD RMS Role Separation
      1. Review the AD RMS Role Separation Security Options
    8. Lab: Configuring Exclusion Policies
      1. Excluding Internal User Accounts
    9. Lab: Configuring the Super Users Group
      1. Create AD RMS-protected content by using Microsoft Office Excel 2007
      2. Enabling and Testing the Super Users Group
    10. Lab: AD RMS Reports
      1. Review the AD RMS Reports options
    11. Lab: GPO/Registry Override Settings
      1. Configure GPO and Registry Override Settings
  • Managing Trust
    1. Introduction to Trust Policies
    2. Trusted User Domains
    3. Trusted Publishing Domains
    4. AD RMS and Active Directory Federation Services
    5. Windows Live ID Trust
    6. Trust Scenarios
    7. General Infrastructure Requirements and Product Capabilities
    8. Lab: Configuring Trusted User Domains
      1. Export and import the TUD certificate
      2. Verifying AD RMS Functionality
    9. Lab: Configuring a Trusted Publishing Domain
      1. Remove the TUD Trust Relationship with Adatum
      2. Bootstrap and Protecting Information Before the Merge
      3. Exporting and Importing the Private Key from the Trusted Publishing Domain
      4. Verifying the Functionality of a Trusted Publishing Domain
    10. Lab: Configuring AD FS Trust and user experience
      1. Reset Existing AD RMS Trust
      2. Configure AD RMS Support for AD FS
      3. Adding SPN entries
      4. Configure AD RMS Applications for Federation
      5. Configure the AD FS Client
      6. Verify AD RMS and Federation Functionality
  • Extranet Considerations
    1. Extranet Access to AD RMS
    2. Extranet Access to AD RMS Pipelines
    3. Extranet Client Considerations
    4. AD RMS and Firewall Options
    5. Extranet Scenarios
    6. Lab: Configure AD RMS Pipelines
      1. Configure AD RMS Pipelines
    7. Lab: Configure Forefront TMG to Publish AD RMS
      1. Configure Forefront TMG to Publish AD RMS
    8. Lab: Verify the AD RMS functionality from an Internet Client
      1. Verify the AD RMS Functionality from an Internet Client
    9. Lab: OWA Consumption
      1. OWA Consumption
  • Deploying and Maintaining AD RMS Infrastructure
    1. AD RMS General Performance Guidelines
    2. Adding a Server to a Cluster
    3. Managing Clusters
    4. AD RMS Disaster Recovery
    5. Lab: Installing AD RMS Root Certification cluster additional nodes
      1. Installing Network Load Balancing
      2. Configuring the AD RMS cluster for High Availability
      3. Checking the service functionality – tasks
      4. Decommissioning an AD RMS infrastructure
  • Troubleshooting AD RMS
    1. Troubleshooting Core Infrastructure
    2. Troubleshooting Product Installation
    3. Troubleshooting Product Usage
    4. Diagnostic Tools
    5. Additional Tools
  • Class Materials

    Each student in our Live Online and our Onsite classes receives a comprehensive set of materials, including course notes and all the class examples.

    Class Prerequisites

    Experience in the following is required for this Windows Server class:

    • Working experience and background knowledge of Windows Server® 2008.
    • Basic understanding of Active Directory, IIS, Microsoft® SQL Server®, and Microsoft® Exchange Server technologies.
    • Basic knowledge of DNS, general networking, and PKI principles is also suggested.
    Preparing for Class

    Training for your Team

    Length: 4 Days
    • Private Class for your Team
    • Online or On-location
    • Customizable
    • Expert Instructors

    Training for Yourself

    $1,900.00 or 4 vouchers
    • Live Online Training
    • For Individuals
    • Expert Instructors
    • Guaranteed to Run
    • 100% Free Re-take Option
    • 1-minute Video

    What people say about our training

    Highly recommended training for novices to iOS development.
    Roberto Esguerra
    Gibson, Dunn & Crutcher, LLP
    Webucator provided me with the training I needed just as well as any brick-and-mortar class I've been to. My instructor was amazing, and I was able to stay in the comfort of my own home and I didn't have to deal with traffic!!
    Danelle Lipke
    US Navy
    Excellent course with a very knowledgeable instructor who shared his knowledge of Microsoft Project and also cool tips and tricks!
    Jacqueline Palomino
    DoD OIG
    A quick and efficient way to jump right into using a completely new software.
    Jonathan Ridley
    OnQ

    No cancelation for low enrollment

    Certified Microsoft Partner

    Registered Education Provider (R.E.P.)

    GSA schedule pricing

    61,023

    Students who have taken Instructor-led Training

    11,715

    Organizations who trust Webucator for their Instructor-led training needs

    100%

    Satisfaction guarantee and retake option

    9.29

    Students rated our trainers 9.29 out of 10 based on 28,956 reviews

    Contact Us or call 1-877-932-8228