Microsoft
Microsoft Active Directory Certificate Services (AD CS)
- Installing and Configuring SafeNet ProtectApp Key Storage Provider
- Integration with CipherTrust Manager
- Advanced Topics
  - Setting up SSL/TLS
- Appendix
Microsoft Authenticode
- Installing and Configuring Authenticode
- Integration with CipherTrust Manager
- Integration with KeySecure
- Advanced Topics
  - Setting up SSL/TLS
- Appendix
Microsoft Internet Information Services (IIS)
- Installing and Configuring SafeNet ProtectApp Key Storage Provider
- Integration with CipherTrust Manager
- Advanced Topics
  - Setting up SSL/TLS
Microsoft SQL Server Management Studio (SSMS)
- Installing and Configuring SafeNet ProtectApp Key Storage Provider
- Integration with CipherTrust Manager
- Advanced Topics
  - Setting up SSL/TLS
Microsoft .NET Strong Name (SN)
- Installing and Configuring Strong Name
- Integration with CipherTrust Manager
- Integration with KeySecure
- Appendix
Microsoft Active Directory Rights Management Services (AD RMS)
- Integration with the CipherTrust Manager
- Verifying the Integration
- Appendix

CipherTrust Integrations
Microsoft
Microsoft Active Directory Rights Management Services (AD RMS)

Microsoft Active Directory Rights Management Services (AD RMS)

This document describes how to install, configure, and integrate Microsoft Active Directory Rights Management Services (AD RMS) with the CipherTrust Manager.

AD RMS is an information protection technology that works with AD RMS-enabled applications to help safeguard digital information from unauthorized use. Content owners can define who can open, modify, print, forward, or take other actions with the information. CipherTrust Manager is deployed to provide a security framework to the data in use, data at rest, and the data in transit.

Microsoft Office uses AD RMS to implement document security utilizing SafeNet ProtectApp Cryptographic Service Provider (CSP) to store the AD RMS cluster keys on the CipherTrust Manager. CipherTrust Manager secures the AD RMS Cluster Key generated and used by the AD RMS.

Following diagram shows the integration:

AD RMS

Supported Product Versions

This integration is validated on the following operating system variants:

Windows Server 2012 Standard
Windows Server 2012 R2
Windows Server 2016 Standard

CipherTrust Manager

CipherTrust Manager 2.1 and higher

SafeNet ProtectApp

SafeNet ProtectApp 8.4.3 and higher

Prerequisites

Ensure that the CipherTrust Manager is installed and configured. For more details, refer to the CipherTrust Manager Documentation.
AD RMS communicates with the CipherTrust Manager using the Network Attached Encryption (NAE)-XML Interface. Ensure that the NAE-XML interface is configured. For more details, refer to the CipherTrust Manager Documentation.
Ensure that Active Directory Domain Controller (AD DC) is installed and configured. For more information, refer to the Microsoft Documentation.
Ensure that AD RMS is installed and configured. For more information, refer to the Microsoft Documentation.
Ensure that the port configured on NAE-XML interface is accessible from the AD RMS machine.

Steps for Integration

To integrate AD RMS with the CipherTrust Manager:

Setup the environment
Configure AD DC
Configure CSP for AD RMS

Further, you can verify the integration using the instructions mentioned in the Verifying the Integration section.

Suggest A Change

Microsoft Active Directory Rights Management Services (AD RMS)

Supported Product Versions

Prerequisites

Steps for Integration

On this page