Rights Management Add-On Registry Settings

Applies To: Windows Server 2008, Windows Server 2008 R2

The rights management add-on (RMA) can be used to access protected documents that explicitly allow this option in the absence of IRM-capable applications that are compatible with their document format. RMA has its own registry keys that override the default behavior.

RMA Activation and Certification Services: Active Directory Domain Services (AD DS) is usually used to specify the AD RMS Certification server that is used for bootstrapping. This setting allows you to override the location of the AD RMS cluster specified in AD DS for certification. It can be used when autodiscovery is not available, such as when users do not work inside a LAN with connectivity to AD DS. If present, takes precedence over the settings under MSDRM registry branch for the rights management add-on. Both keys need to be configured for the activation and certification processes to complete.

HKEY_LOCAL_MACHINE\Software\Microsoft\RMA\Activation\ServiceLocation and HKEY_LOCAL_MACHINE\Software\Microsoft\RMA\Certification\ServiceLocation
     REG_SZ: default
     Value: <https://url.to.your.rms.server/_wmcs/Certification>

Windows Live ID activation service URL: Typically, when the AD RMS client is set up to use the Windows Live ID (formerly passport) certification service it is automatically configured with the correct URL for the certification cluster. If overriding this path is desired it can be done by setting the new URL in the registry. This would be useful during testing or development when you need to access a different hierarchy. The following registry key will allow you to override the URL path.

HKEY_LOCAL_MACHINE\Software\Microsoft\RMA\Activation\PassportAuthProvider
     REG_SZ: default
     Value: <https://url.to.WLID.rms.server/_wmcs/Certification>