Share via


Event ID 181 — AD RMS Trust Policy Integrity

Applies To: Windows Server 2008

Trust policies in Active Directory Rights Managemenet Services (AD RMS) allow users to share rights-protected content across Active Directory Domain Services (AD DS) forests that are either internal or external to the organization.

Event Details

Product: Windows Operating System
ID: 181
Source: Active Directory Rights Management Services
Version: 6.0
Symbolic Name: RightsLabelNoMatchingIssuedPrincipalErrorEvent
Message: An Active Directory Rights Management Services (AD RMS) client issuance license does not contain a valid cluster. Ensure that all servers in the AD RMS cluster are part of the trusted publishing domain.

Parameter Reference
Context: %1
RequestId: %2
%3
%4

Resolve

Import trusted publishing domain

To perform this procedure, you must be a member of the local AD RMS Enterprise Administrators group, or you must have been delegated the appropriate authority.

To import a trusted publishing domain:

  1. Log on to an AD RMS server in the cluster.
  2. Click Start, point to Administrative Tools, and then click Active Directory Rights Management Services.
  3. Expand the AD RMS cluster, expand Trust Policies, and then click Trusted Publishing Domains.
  4. Click Import Trusted Publishing Domain.
  5. Click Browse, browse to the exported trusted publishing domain file, and then double-click the file.
  6. In the Password box, type the password that was used to export this trusted publishing domain.
  7. In the Display name box, type the display name to be used to identify this trusted publishing domain in the AD RMS cluster.
  8. Click Finish.

Verify

To perform this procedure, you must be a member of the local Users group, or you must have been delegated the appropriate authority.

Note: Microsoft Office Word 2007 is used as an example in this section. Any AD RMS-enabled application can be used in place of Word 2007.

To verify that the AD RMS trust policies are working correctly:

  1. Log on to an AD RMS-enabled client computer.
  2. Click Start, point to All Programs, point to Microsoft Office, and then click Microsoft Office Word 2007.
  3. In the new document type This is a test document.
  4. Click the Microsoft Office Start Button, point to Prepare, point to Restrict Permissions, and then click Restricted Access.
  5. Select the Restrict permissions to this document check box.
  6. Type another AD RMS user's e-mail address in the Read box, and then click OK.
  7. Send this file to the person who was granted access in step 6.
  8. Have this person open the document and verify that he or she cannot print it.

AD RMS Trust Policy Integrity

Active Directory Rights Management Services