Event ID 184 — AD RMS Trust Policy Integrity
Applies To: Windows Server 2008
Trust policies in Active Directory Rights Managemenet Services (AD RMS) allow users to share rights-protected content across Active Directory Domain Services (AD DS) forests that are either internal or external to the organization.
|Product:||Windows Operating System|
|Source:||Active Directory Rights Management Services|
|Message:||An invalid certificate chain was found in the trusted publishing domain or trusted user domain.
Restore AD RMS configuration database from backup
To perform this procedure, you must be a member of the local System Administrators database role, or you must have been delegated the appropriate authority.
To restore the AD RMS configuration database from backup:
- Log on to the AD RMS configuration database server.
- Click Start, point to All Programs, click Microsoft SQL Server 2005, and then click SQL Server Management Studio.
- In the Server name box, type the name of the AD RMS configuration database server, and then click Connect.
- Right-click Databases, and then click Restore Database.
- In the To database box, select the AD RMS configuration database from the list.
- Click the From device option, and then click the browse button.
- Click Add.
- In the Locate Backup File window, select the database backup file, and then click OK two times.
- Select the Restore check box, and then click OK.
To perform this procedure, you must be a member of the local Users group, or you must have been delegated the appropriate authority.
Note: Microsoft Office Word 2007 is used as an example in this section. Any AD RMS-enabled application can be used in place of Word 2007.
To verify that the AD RMS trust policies are working correctly:
- Log on to an AD RMS-enabled client computer.
- Click Start, point to All Programs, point to Microsoft Office, and then click Microsoft Office Word 2007.
- In the new document type This is a test document.
- Click the Microsoft Office Start Button, point to Prepare, point to Restrict Permissions, and then click Restricted Access.
- Select the Restrict permissions to this document check box.
- Type another AD RMS user's e-mail address in the Read box, and then click OK.
- Send this file to the person who was granted access in step 6.
- Have this person open the document and verify that he or she cannot print it.