Machine Certificate Store

[The AD RMS SDK leveraging functionality exposed by the client in Msdrm.dll is available for use in Windows Server 2008, Windows Vista, Windows Server 2008 R2, Windows 7, Windows Server 2012, and Windows 8. It may be altered or unavailable in subsequent versions. Instead, use Active Directory Rights Management Services SDK 2.1, which leverages functionality exposed by the client in Msipc.dll.]

The machine certificate is named CERT-Machine.drm and is installed in one of the following folders, depending on the Active Directory Rights Management Services (AD RMS) version and on the operating system.

Version Certificate location
AD RMS on Windows Vista and Windows Server 2008 using the client lockbox %USERPROFILE%\AppData\Local\Microsoft\DRM
AD RMS on Windows Vista and Windows Server 2008 using the server lockbox %ALLUSERSPROFILE%\Microsoft\DRM\Server\UserSid
RMS client 1.0 SP2 using the client lockbox %USERPROFILE%\Local Settings\Application Data\Microsoft\DRM
RMS server 1.0 SP2 using the server lockbox %ALLUSERSPROFILE%\Application Data\Microsoft\DRM\Server\UserSid

 

Activating a Computer

Machine Certificate XML Example

Machine Certificates