Which of the following would you configure if you wanted to block computers running Windows 7 and earlier operating systems from consuming AD RMS-protected content?

Which of the following would you configure if you wanted to block computers running Windows 7
and earlier operating systems from consuming AD RMS-protected content?

Which of the following would you configure if you wanted to block computers running Windows 7
and earlier operating systems from consuming AD RMS-protected content?

A.
Trusted publishing domain

B.
Trusted user domain

C.
Exclusion policies

D.
Super Users

Show Hint

Leave a Reply 4

Your email address will not be published. Required fields are marked *

MancaMulas

MancaMulas

The only one that makes sense out of all the options is answer C – Exclusion Policies.

But the only way to prevent is to use Exclude Lockbox Versions (i think).

“If you have enabled an exclusion based on lockbox version, clients that are using a version of the lockbox software earlier than the specified version cannot acquire rights account certificates (RACs) or use licenses because their requests will be denied. These clients must install a new version of the AD RMS client software to acquire a new lockbox that uses the current version of the software.”

https://technet.microsoft.com/en-us/library/cc731069.aspx

https://technet.microsoft.com/en-us/library/cc771228.aspx

Please correct me if i’m wrong.

Reply

Ricky

Ricky

Lockbox Exclusion IS part of Exclusion Policies. If that was one of the choices, then that is the more technically correct answer.

Reply

MancaMulas

MancaMulas

The only one that makes sense out of all the options is answer C – Exclusion Policies.

But the only way to prevent is to use Exclude Lockbox Versions (i think).

“If you have enabled an exclusion based on lockbox version, clients that are using a version of the lockbox software earlier than the specified version cannot acquire rights account certificates (RACs) or use licenses because their requests will be denied. These clients must install a new version of the AD RMS client software to acquire a new lockbox that uses the current version of the software.”

https://technet.microsoft.com/en-us/library/cc731069.aspx

Please correct me if i’m wrong.

Reply

MancaMulas

MancaMulas

Apparently these 2 TechNet articles are incoerent:

“https://technet.microsoft.com/en-us/library/cc771228(v=ws.10).aspx

Understanding AD RMS Exclusion Policies

Updated: March 8, 2008

Applies To: Windows Server 2008

You can implement exclusion policies to deny certain entities the ability to acquire certificate and license requests There are four ways to exclude these entities: by user, by application, by lockbox version, and by Windows operating system version.

According to this you have a way to block certain version of Windows.

“https://technet.microsoft.com/en-us/library/cc771228(v=ws.11).aspx

Understanding AD RMS Exclusion Policies

Updated: December 30, 2007

Applies To: Windows Server 2008 R2, Windows Server 2012

You can implement exclusion policies to deny certain entities the ability to acquire certificate and license requests There are three ways to exclude these entities: by user, by application, and by lockbox version.”

But according to this, the most recente versins of Windows Server do not support Windows versions exclusions policies.

Either way, answer C is correct.

Reply