Solved

can i use active directory rights mangement services outside of the company domain

Posted on 2012-03-30
4
214 Views
Last Modified: 2012-05-18
can i use active directory rights mangement services outside of the company domain on a large scale
if so
how is this achieved
best practice for deploying this
0
Comment
Question by:dougdog
4 Comments
 
LVL 57

Expert Comment

by:Mike Kline
ID: 37787297
It can be done,  I won't blow smoke here, something I've never done.  We had RMS at my last job internally but it was a classified network and we didn't extend it

http://technet.microsoft.com/en-us/library/hh311038(v=ws.10).aspx
http://technet.microsoft.com/en-us/library/dd996632(v=ws.10).aspx

You can search around for more info.

It is going to take a lot of research and planning.

Thanks

Mike
0
 

Author Comment

by:dougdog
ID: 37787314
is it more designed for internal use?
0
 
LVL 26

Accepted Solution

by:
MidnightOne earned 500 total points
ID: 37863896
Short answer: Yes, it can be used for external clients. Yes, it is FAR easier for internal use only.

Longer answer: It requires such an interlocking set of services (SQL, CA infrastructure, OCSP integrated with IIS, client organization CA integration) that it frequently isn't worth the effort.

In addition to mkline71's links, check out the step by step guide to AD RMS as well.
0

Featured Post

Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

Join & Write a Comment

Find out how to use Active Directory data for email signature management in Microsoft Exchange and Office 365.
It’s a strangely common occurrence that when you send someone their login details for a system, they can’t get in. This article will help you understand why it happens, and what you can do about it.
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…

705 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

23 Experts available now in Live!

Get 1:1 Help Now