locked
Logging in always fails the first time RRS feed

  • Question

  • Hi,

     

    I have a RMS deployment in production mode and logging in behaves in a very strange manner. Whenever one opens a RMS protected file (docx, pptx, etc) logging in always fails the first time. It doesn't actually say that the credentials are incorrect but a new window appears saying the the user doesn't have rights to the file and that they can be requested using the indicated email. Clicking the "change user" button and logging in through the Credential Manager with the same credentials works and so the file can be opened. However, this behavior is extremely irritating for our users as it is very confusing. 

     

    Some more details:

    -we're using Office 2007

    -the AD and RMS servers roles are installed on Server 2008 R2 machines

    -we have a genuine SSL certificate

    -this happens both inside and outside the organization's network

     

    Alex

    Wednesday, February 1, 2012 4:09 AM

All replies

  • I did some more tests and I came to the following conclusion which seems to point that there's a bug in AD or RMS:

    - if the logged on user is among the users listed in the issuance license then logging in is smooth

    - otherwise the first login will always fail to open the document because for some very weird reason it probably attempts to authenticate the currently logged on user (which doesn't have any rights) instead of the indicated one. 

     

    To me this looks like a bug. Please tell me if I'm mistaken.

    Wednesday, February 1, 2012 5:02 PM
  • More info for anyone intereseted:

     

    I built 2 separate networks using Virtual Box consisting of three machines: RMS server, AD server and client. In both scenarios I observed the following behavior:

     

    - if the RMS website uses HTTP alone then everything runs smooth

    - if the RMS website uses HTTPS then the problems I described in the my previous posts happen. 

    Thursday, February 2, 2012 5:45 PM