Featured Client

American Board of Podiatric Surgery

ABPS regularly counts on MCC for consulting on advanced CRM topics

Company News

Active Directory Rights Management Services Experts

Using Rights Management Services for Security and Policy Enforcement
Miles Consulting Corp's Active Directory Consultants employ Rights Management Services (RMS) as an information protection technology. This works with RMS enabled applications to safeguard digital information from unauthorized use - both online and offline - inside and outside of your organization's firewall.

AD DC

Authentication users of AD RMS
Group expansion for AD RMS
Stores AD RMS Service Discovery Location

SQL Server

(Seprates SQL server or, for small configurations, SQL on AD RMS server)

Configuration Database stores:
Data needed to manage account certification, licensing & publishing
Primary key pairs for secure rights management

AD RMS Server

Root Certification Server - Provides certification to AD RMS enabled clients

License AD RMS protected content
Enroll servers and users
Administer AD RMS functions

AD RMS enabled client installed.
AD RMS enabled applications. For example: IE, Office 2003/2007. Office SharePoint Server 2007.

AD RMS-Protected Content (XrML) (contains usage rules)
Each consumer of content recives unique license that enforces rules.

Software-based key protection is the default for AD RMS. For added protection. AD RMS can store its keys in a harware security module.

	Windows Server 2008 delievers a fully integrated federated enterprise rights management solution. This integration combines Active Directory Federation Services (AD FS) and Active Directory Rights management Services (AD RMS) to extend AD RMS to external users.
	AD RMS is included in Windows Server 2008 as a server role.

	Author uses AD RMS for the first time - recieves Rights Account Certificate (RAC) and client Licensor Certificate (CLC). Happens once and enables user to publish online or offline and consume rights-protected content.
	Using AD RMS-enabled application, author creates file and specifies user rights. Policy license containing user policies is generated.
	Application generates content key, encrypts content with it. Online Publish - Encrypts content key with AD RMS server public key and sends to AD RMS server. Server creates and signs publishing license (PL). Offline Publish - Encrypts content key with CLC public key, encrypts copy of key with AD RMS server public key. Creates PL and signs with CLC private key. Append PL to encrypted content.
	AD RMS protected content file sent to Information Recipient. AD RMS-protected content may also be represented by e-mail.
	Recipient recives file, opens using AD RMS enabled application or browser. If no account certificate on the current computer, the AD RMS server will issue one (AD RMS document notifies applications of the AD RMS server URL).
	Application sends request for use license to AD RMS server that issued publishing license (if file published offline. send to server that issues the CLC). Request includes RAC and PL for file.
	AD RMS server confirms recipient is authorized, checks for a named user, and creates use license for the user. Server decrypts content key using private key of server and re-encrypts content key with public key of recipient. then adds encrypted session key to the use license. This means only the intended recipient can access the file.
	AD RMS server sends use license to information recipient's computer.
	Application examines both the license and the recipient's account certificate to determine whether any certificate in either chain of trust requires a revocation list. user granted access as specified by information author.

Related Links

We are a Microsoft Gold Certified Partner, offering IT Outsourcing, networking and software development. Our firm provides service in Sacramento, the San Francisco Bay Area, Silicon Valley, San Jose, Los Angeles, Orange County, Las Vegas, and Seattle. Our infrastructure engineers and software architects provide networking and web application solutions to small businesses as well as enterprise clients. Our Microsoft certified consultants provide technical support onsite, emergency support, and consulting on business continuity and disaster recovery. Our core competencies include Microsoft CRM customization, Microsoft Exchange consulting, Cisco consulting, SharePoint consulting, Windows consulting, Outsourced Remote Help Desk, virtual server consulting, .NET consultants, and Remote SQL Server DBA services.

	MS CRM specialists, Microsoft CRM 4.0, Dynamics CRM Certified Consultants - Microsoft CRM Customization - Microsoft CRM Consulting
	Microsoft Exchange Support, Exchange 2010 Consulting, Exchange Server Migration, Exchange Server Support - Exchange Server Consultants
	IT Consulting Firm, Network Consulting Firm, Network Support, Remote Help Desk
	Equallogic Price List
	SharePoint Upgrade, Customizing SharePoint, Certified SharePoint Consultants - SharePoint Consultants
	Microsoft SQL Server Remote DBA, SQL Server 2008 Upgrades, SQL Server Performance Tuning - SQL Server Consulting
	Small Business Server Consulting, SBS 2008 Migration, Windows SBS Experts - Microsoft SBS Consulting
	Microsoft Virtualization Consultants, Server Virtualization Firm, Virtual Server Experts - HyperV Consulting
	IT Managed Services, Outsourced IT, Managed Services Provider - IT Managed Services Firm
	MS Windows Server Experts, Support, Windows Server Consulting Firm - Microsoft Windows 2008 Consulting
	Dell EqualLogic Partner, Purchase Equallogic, Storage Area Network (SAN) installation, Fibre Channel and iSCSI SAN experts - Equallogic Pricing
	Cisco Certified Network Associates, CCNAs, CCSPs, ASA, PIX, Cisco Router, Cisco IOS Experts, PIX;- Cisco Consulting
	IT Outsourcing, On-Site Computer Support, Outsourced IT, On-Call Tech Support
	Computer Networking, Network Support Firm, Windows Network Experts, Technical Support, On-Site and Remote Help Desk - Network Support
	VMWare Support, Server Virtualization Consultants, Server Consolidation, Hyper-V versus VMWare - VMWare Consulting
	Server Monitoring, Remote Network Monitoring, Computer System Monitoring - Remote Network Monitoring
	Network Penetration Testing, IT Security Audit, Computer Security Consultants, Windows Network Security Protection - Network Security Firm
	.NET Architects, Service Oriented Architecture, ASP.NET Consultants, C#, VB.NET, .NET Framework, .NET 3.5 - .NET Consulting
	IT Staffing Firm, IT Recruiter, Technical Recruiting, Tech Staffing - IT Recruiter
	Disaster Recovery Firm, Disaster Recovery Consultants, DR Solutions - Disaster Recovery Consulting
	Non Profit Discounted IT-Consulting to 501c3 Organizations - Non-Profit Discount
	Microsoft Certified Consultants, Microsoft Experts - Microsoft Gold Certified Partner
	.NET Software Development, Microsoft Certified Solution Developers, .NET architecture and development, Requirements management, Website architecture, User interface design, Database design, SQL Server performance tuning, SQL Server Reporting Service, XML Web Services, Web development using ASP.NET, Software development with VB.NET and C#, Microsoft "Click Once" application development, E-Commerce development, User support & ongoing maintenance, Mentoring with your existing staff, Software Testing & QA - .NET Development
	Data Protection Manager, Configuration Manager, Virtual Machine Manager, Operations Manager - System Center Consultants
	Silicon Valley IT Consultants, Orange County Computer Consultants, Oakland IT Consultants, Sacramento IT Consultants, Las Vegas IT Consultants, San Francisco IT Consultants, San Jose IT Consultants, Los Angeles IT Consultants, San Diego IT Consultants, Reno IT Consultants, Irvine IT Consultants, Long Beach IT Consultants, Stockton IT Consultants, Colorado IT Consultants, Seattle Network Consulting