OpenSkillIndex← back to search
claude-code

Agent-Skills azure-information-protection

Expert knowledge for Azure Information Protection development including best practices, decision making, configuration, and deployment. Use when choosing Azure RMS vs AD RMS, migrating keys/policies, configuring RMS connector/MSIPC, or monitoring RMS logs, and other Azure Information Protection related development tasks. Not for Azure Key Vault (use azure-key-vault), Azure Security (use azure-security), Azure Defender For Cloud (use azure-defender-for-cloud), Azure Sentinel (use azure-sentinel).

install
source · Clone the upstream repo
git clone https://github.com/MicrosoftDocs/Agent-Skills
Claude Code · Install into ~/.claude/skills/
T=$(mktemp -d) && git clone --depth=1 https://github.com/MicrosoftDocs/Agent-Skills "$T" && mkdir -p ~/.claude/skills && cp -r "$T/skills/azure-information-protection" ~/.claude/skills/microsoftdocs-agent-skills-azure-information-protection && rm -rf "$T"
manifest: skills/azure-information-protection/SKILL.md
source content

Azure Information Protection Skill

This skill provides expert guidance for Azure Information Protection. Covers best practices, decision making, configuration, and deployment. It combines local quick-reference content with remote documentation fetching capabilities.

How to Use This Skill

IMPORTANT for Agent: Use the Category Index below to locate relevant sections. For categories with line ranges (e.g., 

L35-L120
), use 
read_file
with the specified lines. For categories with file links (e.g., 
[security.md](security.md)
), use 
read_file
on the linked reference file

IMPORTANT for Agent: If 

metadata.generated_at
is more than 3 months old, suggest the user pull the latest version from the repository. If 
mcp_microsoftdocs
tools are not available, suggest the user install it: Installation Guide

This skill requires network access to fetch documentation content:

  • Preferred: Use 
    mcp_microsoftdocs:microsoft_docs_fetch
    with query string 
    from=learn-agent-skill
    . Returns Markdown.
  • Fallback: Use 
    fetch_webpage
    with query string 
    from=learn-agent-skill&accept=text/markdown
    . Returns Markdown.

Category Index

CategoryLinesDescription
Best PracticesL32-L36Monitoring and troubleshooting Azure RMS connector health, tracking Azure Rights Management usage, and interpreting logs/metrics for ongoing protection service reliability.
Decision MakingL37-L41Guidance on choosing between Azure Rights Management and on-premises AD RMS, including feature, deployment, security, and migration considerations.
ConfigurationL42-L47Configuring and deploying the Windows RMS (MSIPC) client and setting required registry values for RMS connectors on servers for Azure Information Protection.
DeploymentL48-L62Deploying the RMS connector and step-by-step guidance for migrating on-prem AD RMS (keys and policies) to Azure Information Protection, including HSM and software key migration.

Best Practices

TopicURL
Monitor RMS connector health and Azure RMS usagehttps://learn.microsoft.com/en-us/azure/information-protection/monitor-rms-connector

Decision Making

TopicURL
Decide between Azure Rights Management and AD RMShttps://learn.microsoft.com/en-us/azure/information-protection/compare-on-premise

Configuration

TopicURL
Configure and deploy the RMS client (MSIPC) on Windowshttps://learn.microsoft.com/en-us/azure/information-protection/rms-client/client-deployment-notes
Configure RMS connector registry settings on servershttps://learn.microsoft.com/en-us/azure/information-protection/rms-connector-registry-settings

Deployment

TopicURL
Configure on-premises servers to use the RMS connectorhttps://learn.microsoft.com/en-us/azure/information-protection/configure-servers-rms-connector
Deploy Microsoft Rights Management connector for on-premises servershttps://learn.microsoft.com/en-us/azure/information-protection/deploy-rms-connector
Install and configure the RMS connector for AIPhttps://learn.microsoft.com/en-us/azure/information-protection/install-configure-rms-connector
Prepare environment for Phase 1 AD RMS to AIP migrationhttps://learn.microsoft.com/en-us/azure/information-protection/migrate-from-ad-rms-phase1
Execute Phase 2 of AD RMS to AIP migrationhttps://learn.microsoft.com/en-us/azure/information-protection/migrate-from-ad-rms-phase2
Complete Phase 3 of AD RMS to AIP migrationhttps://learn.microsoft.com/en-us/azure/information-protection/migrate-from-ad-rms-phase3
Run Phase 4 tasks for AD RMS to AIP migrationhttps://learn.microsoft.com/en-us/azure/information-protection/migrate-from-ad-rms-phase4
Finalize Phase 5 of AD RMS to AIP migrationhttps://learn.microsoft.com/en-us/azure/information-protection/migrate-from-ad-rms-phase5
Migrate AD RMS deployments to Azure Information Protectionhttps://learn.microsoft.com/en-us/azure/information-protection/migrate-from-ad-rms-to-azure-rms
Migrate HSM-protected AD RMS key to AIP HSM keyhttps://learn.microsoft.com/en-us/azure/information-protection/migrate-hsmkey-to-hsmkey
Migrate software-protected AD RMS key to AIP HSM keyhttps://learn.microsoft.com/en-us/azure/information-protection/migrate-softwarekey-to-hsmkey
Migrate software-protected AD RMS key to AIP software keyhttps://learn.microsoft.com/en-us/azure/information-protection/migrate-softwarekey-to-softwarekey