How to Deploy AD RMS Policy Templates

 

Method 1 - Using Group Policy with Office Administrative Templates

1. Note the location of the network share where the ADRMS Rights Policy Templates (xml files) are being stored. Double check the domain users have at least read permission on the share.
2. Download the Office 2010/2007 Administrative Template files (links below)
3. Login to the Domain controller and launch the GPMC
4. Create a new Group Policy Object. Then traverse thru User Configuration then Administrative Templates. Load the Office 2010 template (Office14.adm) / Office 2007 template (Office12.adm) / Office 2003 template (Office11.adm)
5. Go to setting User Configuration\Administrative Templates\Microsoft Office 2010\Manage Restricted Permissions
6. Select Specify Permission Policy Path, click Enabled and provide the share name to the location of the ADRMS Rights Policy Templates
7. Apply the GPO to the requisite OU where the user objects reside

 Reference Links:

• RMS templates managed by group policy (AdminTemplatePath)
• Configure Information Rights Management in Office 2010
  

Download Links:

• Office 2010 Administrative Template files (ADM, ADMX/ADML) and Office Customization Tool
• 2007 Office system Administrative Template files (ADM, ADMX, ADML) and Office Customization Tool version 2.0

 

Method 2 - Automatic AD RMS Rights Policy Template Distribution

Documented in the AD RMS Rights Policy Templates Deployment Step-by-Step Guide

Essentially involves the following elements

• Network share where the ADRMS Rights Policy Templates can be stored
• Desktop clients that are Windows Vista SP2 and above
• Creating a Scheduled task
• Few registry edits

Method 3 - Manually copy the ADRMS Rights Policy Templates

1. Modify the registry key to set the location of the templates folder
2. Copy the ADRMS Rights Policy Templates from the network share to the designated folder on the local computer e.g. %LocalAppData%\Microsoft\DRM\Templates

Documented in the AD RMS Rights Policy Templates Deployment Step-by-Step Guide

Method 4 - Offline Folders

A combination of the above three methods, involving the steps

1. Modify the registry key to set the location of the templates folder on the local computer
   HKEY_CURRENT_USER\Software\Microsoft\Office\12.0\Common\DRM
   Create a new Expandable String Value named AdminTemplatePath
   for the AdminTemplatePath Value enter the network share path to the ADRMS Rights Policy Templates
2. Enable offline folder sharing for the network share path
3. Additionally configure it to sync at login to replicate any changes on the ADRMS Rights Policy Templates network share

Reference Links:

AD RMS Policy Template Considerations

 

 

See Also

• AD RMS Portal

---