AD RMS Concepts

[The AD RMS SDK leveraging functionality exposed by the client in Msdrm.dll is available for use in Windows Server 2008, Windows Vista, Windows Server 2008 R2, Windows 7, Windows Server 2012, and Windows 8. It may be altered or unavailable in subsequent versions. Instead, use Active Directory Rights Management Services SDK 2.1, which leverages functionality exposed by the client in Msipc.dll.]

The following topics contain overviews of the major concepts that you should understand before using the Active Directory Rights Management Services (AD RMS) SDK.

Topic Description
[Licenses]( Introduces issuance licenses and end-user licenses.
[Certificates]( Introduces the following certificates:
  • machine certificates
  • rights account certificates
  • client licensor certificates
  • server licensor certificates
  • application manifests
  • Pre-production certificates
  • Production certificates
[Certificate Hierarchy]( Introduces the AD RMS Pre-production and Production certificate hierarchy.
[Templates]( Introduces predefined templates that can be used to apply usage policies when creating a license.
[Extended Policy Template Information]( Discusses the rights policy of a template that controls how content licenses are to be implemented.
[Application Manifests]( Introduces application manifests, a type of certificate that signs your application into the appropriate AD RMS certificate hierarchy.
[Lockboxes]( These can be used to create secure environments on AD RMS clients and servers.
[Encryption]( Discusses encrypting and decrypting content.
[Computer Activation]( Introduces computer activation, a process that identifies the computer by signing it into the appropriate AD RMS hierarchy.
[User Activation]( Introduces user activation, a process that identifies an Active Directory user account in the appropriate AD RMS hierarchy and associates it with a specific computer.
[Server Enrollment]( Discusses how an AD RMS server is enrolled into the certificate hierarchy.
[Service Discovery]( Discusses how an application finds an AD RMS certification, licensing, or publishing web service.
[Rights]( Introduces the common rights used in AD RMS licenses.
[Exclusion]( Discusses how users can be prohibited from acquiring new licenses or certificates.
[Revocation]( Discusses how AD RMS licenses and certificates can be invalidated after issuance.
[Server Transport Protocol]( Discusses the protocols that can be used to communicate with an AD server.


About the AD RMS SDK

AD RMS Overview