Implementing Active Directory Rights Management Services with Exchange and SharePoint



Similar documents
Deploying Microsoft Windows Rights Management Services

Overview of Active Directory Rights Management Services with Windows Server 2008 R2

6436: Designing a Windows Server 2008 Active Directory Infrastructure and Services (5 Days)

Overview of Active Directory Rights Management Services with Windows Server 2008 R2

70-414: Implementing a Cloud Based Infrastructure. Course Overview

Configuring Advanced Windows Server 2012 Services

Active Directory Services with Windows Server MOC 10969

Designing a Windows Server 2008 Active Directory Infrastructure and Services

Active Directory Services with Windows Server

Course: Fundamentals of Microsoft Server 2008 Active Directory

Course Active Directory Services with Windows Server

Active Directory Services with Windows Server 10969B; 5 days, Instructor-led

Installation and Deployment in Microsoft Dynamics CRM 2013

INSTALLATION AND DEPLOYMENT IN MICROSOFT DYNAMICS CRM 2013

Preliminary Course Syllabus

Configuring Advanced Windows Server 2012 Services 5 Days

Designing Windows Server 2008 Active Directory Infrastructure and Services Course 6436B; 5 Days, Instructor-led

Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010 Service Pack 2

Module 2: Deploying and Managing Active Directory Certificate Services

Designing a Windows Server 2008 Active Directory Infrastructure and Services

MOC 6436A: Designing Active Directory Infrastructure and Services in Windows Server 2008

Course 10969A Active Directory Services with Windows Server

Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010

Active Directory Rights Management Services integration (AD RMS)

You need to recommend a monitoring solution to ensure that an administrator can review the availability information of Service1. What should you do?

Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010 Service Pack 2

Outline SSS Microsoft Windows Server 2008 Hyper-V Virtualization

Build Your Knowledge!

SINGLE COURSE. 136 Total Hours. After completing this course, students will be able to:

Configuring Advanced Windows Server 2012 Services

LEARNING SOLUTIONS website milner.com/learning phone

Configuring Advanced Windows Server 2012 Services MOC 20412

Configuring and Troubleshooting Identity and Access Solutions with Windows Server 2008 Active Directory Course 6426C: Three days

MCSA: Windows Server 2012 Boot Camp

Course Outline: Course Configuring Advanced Windows Server 2012 Services

Microsoft Active Directory Services with Windows Server

Course 6426: Configuring and Troubleshooting Identity & Access Solutions With Windows Server 2008 Active Directory Page 1 of 6

(80539A) Installation and Deployment in Microsoft Dynamics CRM 2013

Designing a Windows Server 2008 Active Directory Infrastructure and Services

Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010 Service Pack 2

MCITPEXCH - Exchange Bootcamp Design, Configure, and Manage (10135/10233)

MS-6422A - Implement and Manage Microsoft Windows Server Hyper-V

Configuring Advanced Windows Server 2012 Services Course# 20412D

Implementing and Managing Windows Server 2008 Hyper-V

Course 10233:Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010 Service Pack 2

MS-10135: Configuring, Managing and Troubleshooting Microsoft Exchange Server Course Objectives. Price. Duration. Methods of Delivery

"Charting the Course... MOC D Configuring Advanced Windows Server 2012 Services Course Summary

MS-6416D: Updating Your Windows Server 2003 Technology Skills to Windows Server 2008

MS Configuring Advanced Windows Server 2012 Services

Course Outline. Course 20412B: Configuring Advanced Windows Server 2012 Services. Duration: 5 Days

Course 20412A: Configuring Advanced Windows Server 2012 Services

Updating Your Windows Server 2003 Technology Skills to Windows Server 2008

Configuring and Troubleshooting Identity and Access Solutions with Windows Server 2008 Active Directory

Introduction to Installing and Managing Microsoft Exchange Server 2007

Configuring Advanced Windows Server 2012 Services

MS 10135B Configuring, Managing and Troubleshooting Microsoft Exchange Server 2010

MCSE SYLLABUS. Exam : Managing and Maintaining a Microsoft Windows Server 2003:

Managing Office 365 Identities and Services 20346C; 5 Days, Instructor-led

Implementing an Advanced Server Infrastructure

Core Solutions of Microsoft Exchange Server 2013 Course 20341A; 5 Days

Configuring and Managing Microsoft System Center Essentials 2010

Course 20346: Managing Office 365 Identities and Services

Designing a Windows Server 2008 Active Directory Infrastructure and Services

Active Directory Services with Windows Server

M6422A Implementing and Managing Windows Server 2008 Hyper-V

NE-6416D Updating Your Windows Server 2003 Technology Skills to Windows Server 2008

Configuring Advanced Windows Server 2012 Services Course 20412

Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010 Service Pack 2 MOC 10233

10233B: Designing and Deploying Messaging Solutions with Microsoft Exchange Server 2010

MS Configuring, Managing and Troubleshooting Microsoft Exchange Server 2010

MS Implementing an Advanced Server Infrastructure

Microsoft Windows Server 2008: MS-6422 Implementing and Managing Hyper V Virtualization 6422

MS Configure and Troubleshoot Identity Access Solutions with Windows Server 2008 Active Directory

6445A - Implementing and Administering Small Business Server 2008

Implementing and Administering Windows Small Business Server 2008

Course 10135A: Configuring, Managing and Troubleshooting Microsoft Exchange Server 2010

MOC ACTIVE DIRECTORY SERVICES WITH WINDOWS SERVER

6422: Implementing and Managing Windows Server 2008 Hyper-V (3 Days)

ITKwebcollege.ADMIN-Basics Fundamentals of Microsoft Windows Server

DottsConnected SHAREPOINT 2010 ADMIN TRAINING. Exercise 1: Create Dedicated Service Accounts in Active Directory

NIIT Education and Training, Doha, Qatar - Contact: /1798;

Microsoft Dynamics CRM 2011 Installation and Deployment

Updating your Network Infrastructure and Active Directory Technology Skills to Windows Server 2008

Jay Ferron. Blog.mir.net. CEHi, CWSP, CISM, CISSP, CVEi. MCITP, MCT, MVP, NSA IAM.

Updating Your Network Infrastructure and Active Directory Technology Skills to Windows Server 2008

Transcription:

Course 50403B: Implementing Active Directory Rights Management Services with Exchange and SharePoint Course Details Course Outline Module 1: Why Rights Management? This module provides an overview of Microsoft Active Directory Rights Management Services (AD RMS). The overview describes how the product works, the business reasons for using AD RMS, and the technology that you use to deploy an AD RMS environment. A Bit of History Business Reasons for AD RMS What AD RMS Does AD RMS Usage Scenarios AD RMS Technology Overview AD RMS in Windows Server 2008 R2 and Windows 7 Lab : AD RMS Demonstration User experience protecting Microsoft Office based documents. Understand how RMS technology has evolved on the Windows platform. Explain the business reasons for using AD RMS. Explain the features AD RMS provides. Identify the advantages and limitations inherent in AD RMS. Describe how AD RMS works with public key technology. Describe how AD RMS works. Describe the new AD RMS features in Windows Server 2008 and Windows Vista. Module 2: AD RMS Architecture

This module covers the basic architecture and concepts of the Microsoft Active Directory Rights Management Services product. Most of the concepts that are introduced in this module will be covered in more detail in other modules later in the course. AD RMS Components Overview AD RMS Bootstrapping Process AD RMS Publishing and Licensing Process AD RMS Service Connection Point (SCP) AD RMS Topology AD RMS Components Details Describe Public Key Infrastructure (PKI) technology. Explain how AD RMS can be used to address challenges inherent in PKI. Describe how AD RMS works. Identify the major components of AD RMS. Describe the types of licenses used in the AD RMS process. Describe the client-side software and applications required for AD RMS. Identify the AD RMS enhancements in Windows Server 2008 and Windows 7. Module 3: AD RMS Installation and Provisioning In this module, the student will learn about network infrastructure, hardware, and software requirements for installing AD RMS. The student will learn the procedure for deploying AD RMS servers, as well as the permissions required for the accounts that are used in the deployment and management of AD RMS. AD RMS Requirements AD RMS Prerequisites Installing and Provisioning AD RMS AD RMS Server Installation Best Practices Migrating RMS to AD RMS Lab : Creating the AD RMS Service Account Create an AD RMS Service Account Lab : Installing and Provisioning AD RMS

Install and provision AD RMS Identify the AD RMS server hardware and software requirements. Install a database server. Identify best practices for installing an AD RMS server. Install and provision an AD RMS server. Configure the AD RMS service connection point. Migrate RMS to AD RMS. Module 4: Information Rights Management on Desktop Applications This module begins by describing the AD RMS client software, its requirements, and how to deploy it. Next, the module identifies the Information Rights Management (IRM) components on client machines and the bootstrapping process the AD RMS client performs for each user. The module then discusses how IRM is provided in Microsoft Office products, the XPS format, Window Mobile 6.0, and read-only access in Windows Internet Explorer. The module ends with a discussion of how registry keys interact with AD RMS. Operating System Versions and AD RMS Clients Microsoft Office IRM XPS IRM Windows Mobile 6.0 IRM RM Add-on for Internet Explorer and Rights-Managed HTML (RMH) Office Viewers and AD RMS IRM Client Registry Settings Lab : Protecting and Consuming AD RMS Protected Documents Protect and Consume AD RMS Protected Documents Lab : Creating and Consuming AD RMS Content Using Microsoft Outlook 2007 Create and Consume AD RMS Content Using Microsoft Outlook 2007 Lab : Protecting and Consuming Content Using XPS Protect and Consume Content Using XPS Lab : Consuming Content Using the Rights Management Add-on for Internet Explorer Consume Content Using the Rights Management Add-on for Internet Explorer

Lab : Using Active Directory Security Groups Using Active Directory Security Groups Describe the AD RMS client software and its requirements. Deploy the Windows RMS client software in legacy clients. Identify the AD RMS components that are installed on client machines. Explain the AD RMS client bootstrapping process. Explain how IRM works in Microsoft Office products. Describe how the XPS format uses IRM and how XPS can be used in conjunction with Microsoft Office applications. Explain how the Rights Management Add-on for Internet Explorer enables users to view restricted files. Describe how to set registry keys that are related to AD RMS. Module 5: Rights Policy Templates This module provides an introduction to rights policy templates and the concepts related to protecting and consuming content that is protected by templates. These templates are used to standardize security policies and protect information according to the latest policy. Introduction to Rights Policy Templates Creating Rights Policy Templates Protecting Content Using Templates Consuming Content Protected by Templates Managing Rights Policy Templates Template Distribution Strategy Lab : Creating and Using a Rights Policy Template Create and Use a Rights Policy Template Lab : Modifying Existing Templates Modify Existing Templates Lab : Distribute a Rights Policy Template Distribute a Rights Policy Template

Describe the features offered in rights policy templates. Identify template distribution features in AD RMS. Describe the processes for protecting and consuming content protected by rights policy templates. Define rights policy templates. Assign users and groups to rights policy templates. Specify expiration policies in rights policy templates. Explain how to retire and back up rights policy templates. Module 6: Information Rights Management on Server Applications In this module, students will see how AD RMS integrates with server-side applications, which use AD RMS to automatically protect and license content. This module covers the following server products: - Microsoft Office SharePoint Server (MOSS) 2007 - Microsoft Exchange Server 2010 - AD RMS Bulk Protection Tool + FCI Microsoft Office SharePoint Server 2007 IRM Email Protection in Exchange Server New AD RMS Features in Exchange Server 2010 Lab : Integrating AD RMS and Microsoft SharePoint Server 2007 Enabling MOSS IRM Configuring MOSS IRM on Document Libraries Consuming Content using MOSS IRM Lab : Integrating AD RMS and Exchange Server 2010 Using OWA without Microsoft Exchange IRM integration Configuring Microsoft Exchange Server 2010 and AD RMS integration Implementing and validating Microsoft Exchange Server 2010 and AD RMS integration Lab : Integrating AD RMS with Bulk Protection Tool Use Bulk Protection Tool to decrypt protected content Use Bulk Protection Tool to Protect content using AD RMS Templates Lab : Protect information Automatically Integrating AD RMS with FCI and Bulk Protection Tool

Setup environment for FCI and AD RMS bulk protection Create classification property and rules for Contoso documents Create file management tasks to restrict access to low and high business impact information Verify FCI and AD RMS bulk protection functionality MOSS IRM Describe how MOSS works with AD RMS to protect documents stored in MOSS document libraries. Identify MOSS functionality. Describe MOSS s logical and physical architecture. Describe how IRM works with MOSS to provide information protection. Exchange Server 2010 Explain the new features provided in Exchange Server2010 around AD RMS. AD RMS Bulk Protection Tool + FCI Describe how AD RMS Bulk Protection Tool can be used. Describe how FCI can be used. Module 7: Administering AD RMS This module introduces some of the elements of the AD RMS Management Console. It discusses exclusion policies that can be defined by an administrator, provides an overview of revocation, and discusses the Super Users group and how it can be used to recover content. The module also introduces the new AD RMS reporting capabilities. The AD RMS Administration Console New AD RMS Administration Roles Rights Account Certificate Policies Exclusion Policies Revocation The Super Users Group Lab : AD RMS Role Separation Review the AD RMS Role Separation Security Options Lab : Configuring Exclusion Policies

Excluding Internal User Accounts Lab : Configuring the Super Users Group Create AD RMS-protected content by using Microsoft Office Excel 2007 Enabling and Testing the Super Users Group Lab : AD RMS Reports Review the AD RMS Reports options Lab : GPO/Registry Override Settings Configure GPO and Registry Override Settings Explain the advantages of the administrative console. Describe the new administrative roles in AD RMS. Describe the types of trust offered in AD RMS. Describe the types of exclusion policies provided in AD RMS. Explain how revocation is used in AD RMS. Describe the Super Users group and its characteristics. Describe the reports provided in AD RMS Module 8: Managing Trust This module discusses the trust architecture in AD RMS, the types of trusts that are available, and how trusted user domains operate. Introduction to Trust Policies Trusted User Domains Trusted Publishing Domains AD RMS and Active Directory Federation Services Windows Live ID Trust Trust Scenarios General Infrastructure Requirements and Product Capabilities Lab : Configuring Trusted User Domains Export and import the TUD certificate Verifying AD RMS Functionality

Lab : Configuring a Trusted Publishing Domain Remove the TUD Trust Relationship with Adatum Bootstrap and Protecting Information Before the Merge Exporting and Importing the Private Key from the Trusted Publishing Domain Verifying the Functionality of a Trusted Publishing Domain Lab : Configuring AD FS Trust and user experience Reset Existing AD RMS Trust Configure AD RMS Support for AD FS Adding SPN entries Configure AD RMS Applications for Federation Configure the AD FS Client Verify AD RMS and Federation Functionality Describe the core trust architecture in AD RMS. Describe Trusted User Domains and how they work. Explain when Trusted Publishing Domains are used and how they work. Describe the Active Directory Federation Service and how it works with AD RMS. Describe Windows Live ID and how it works. Module 9: Extranet Considerations This module discusses the extranet and how you can use it with AD RMS to provide access to protected content. The module provides reasons for establishing extranet access to AD RMS, and offers examples and scenarios. The module also discusses the use of a firewall, like Microsoft Internet Security and Acceleration Server (ISA Server), to address security with AD RMS. Extranet Access to AD RMS Extranet Access to AD RMS Pipelines Extranet Client Considerations AD RMS and Firewall Options Extranet Scenarios Lab : Configure AD RMS Pipelines Configure AD RMS Pipelines

Lab : Configure Forefront TMG to Publish AD RMS Configure Forefront TMG to Publish AD RMS Lab : Verify the AD RMS functionality from an Internet Client Verify the AD RMS Functionality from an Internet Client Lab : OWA Consumption OWA Consumption Explain why an organization might need to establish extranet access to AD RMS. Identify extranet-specific details to consider when you are establishing AD RMS access. Describe scenarios in which extranet access to AD RMS would be useful. Explain how a firewall works when you are using AD RMS in a perimeter network instead of an intranet. Explain how to use TMG to increase security when publishing AD RMS. Module 10: Deploying and Maintaining AD RMS Infrastructure This module covers some of the key concepts to deploy and maintain the AD RMS service. Keep in mind that after key documents are protected, AD RMS becomes a very critical service in the organization. AD RMS General Performance Guidelines Adding a Server to a Cluster Managing Clusters AD RMS Disaster Recovery Lab : Installing AD RMS Root Certification cluster additional nodes Installing Network Load Balancing Configuring the AD RMS cluster for High Availability Checking the service functionality tasks Decommissioning an AD RMS infrastructure Understand AD RMS General Performance Guidelines Add a server to a cluster Manage clusters

Understand AD RMS Disaster Recovery Strategies Module 11: Troubleshooting AD RMS This module focuses on common issues in AD RMS and the tools available to help troubleshoot them. We examine in detail each of the common AD RMS support issues and the steps you can take to troubleshoot them. At the end of the module, we provide a list of additional resources for troubleshooting issues in AD RMS. Troubleshooting Core Infrastructure Troubleshooting Product Installation Troubleshooting Product Usage Diagnostic Tools Additional Tools Identify the main groups of tools available for troubleshooting AD RMS. Enable tracing on the AD RMS server and client. Explain how to access and use DebugView to monitor debugging output. Identify the types of reports that can be generated in AD RMS. Identify the most common issues in AD RMS and how to address them. Identify some of the resources available for additional troubleshooting information.

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information