| Event Id | 101 |
| Source | Active Directory Rights Management Services |
| Description | A lookup or group expansion request failed for the Active Directory Domain Services (AD DS) component in Active Directory Rights Management Services (AD RMS). Make sure that the requested AD DS object has an e-mail address assigned to it. |
| Event Information | According to Microsoft : Cause : This event is logged when group expansion request failed for the Active Directory Domain Services (AD DS) component in Active Directory Rights Management Services (AD RMS). Resolution : Ensure that all AD RMS users have an E-mail Active Directory attribute To perform this procedure, you must be a member of the Domain Admins group, or you must have been delegated the appropriate authority. To ensure that all AD RMS users have an E-mail Active Directory attribute: Note: It is not necessary to check all AD DS user accounts. If you know which user account tried to consume rights-protected content, you should check that user account first. 1.Log on to a domain controller in the AD RMS forest. 2.ClickStart, point toAdministrative Tools, and then clickActive Directory Users and Computers. 3.ClickUsers. 4.Right-click a user account, and then clickProperties. 5.On theGeneral tab, verify that theE-mail box has the correct e-mail address attribute for this user. 6.Repeat steps 4 - 5 for all AD RMS-enabled users. Verify : To perform this procedure, you must be a member of the local Users group, or you must have been delegated the appropriate authority. Note: Microsoft Office Word 2007 is used as an example in this section. Any AD RMS-enabled application can be used in place of Word 2007. To verify that AD RMS can access the Active Directory Domain Services forest: 1.Log on to an AD RMS-enabled client computer. 2.ClickStart, point toAll Programs, point toMicrosoft Office, and then clickMicrosoft Office Word 2007. 3.In the new document typeThis is a test document. 4.Click the Microsoft Office Start Button, point toPrepare, point toRestrict Permissions, and then clickRestricted Access. 5.Select theRestrict permissions to this document check box. 6.Type another AD RMS user's e-mail address in theRead box, and then clickOK. 7.Send this file to the person who was granted access in step 6. 8.Have this person open the document and verify that he or she cannot do anything else other than read the document, such as print it. |
| Reference Links | Event ID 101 from Source Active Directory Rights Management Services |
Catch threats immediately
We work side-by-side with you to rapidly detect cyberthreats
and thwart attacks before they cause damage.