Skip to main content
Perform the tasks in this section to install and configure AD RMS.

Install AD RMS

Perform the following steps to install AD RMS:
1
Select Start> Administrative Tools> Server Managerand then Manage. Select [ Add roles and features ]. In the Before you Begin window, select [ Next ].
2
Choose the installation type: Role-based or Feature-based installation. Select [ Next ].
3
In the Server Selection window, select the server from the domain (or local machine) on which to install AD RMS. Select [ Next ].
4
On the Server Rolespage, check the box next to Active Directory Rights Management Services. Then, select [ Next ] and [ Add Features ].
5
In the Featureswindow, select [ Next ].
6
In the AD RMSpage, select [ Next ].
7
In the Role Servicespage, make sure to select Active Directory Rights Management Server. If you need Identity Federation Support, select accordingly, and then select [ Next ].
8
On the Confirmationpage, select** [ Install ]**. Proceed through the final options.
9
After the installation finishes, select** [ Close ]**.

Configure AD RMS

Perform the following steps to configure the new installation of AD RMS, including the CSP definition and key generation.
1
Go to Start> Administrative Tools> Server Manager. Select the flag icon to the left of Manage. Select [ Perform Additional Configuration ] under Active Directory Rights Management Services.
2
In the Active Directory Rights Management Servicespage, select [ Next ].
3
Define whether to create a new AD RMS root cluster or to join an existing one. Select [ Next ].
4
Define the database server. Select [ Next ].
5
Define the domain user account. Select** [ Next ]**.
6
Set the Cryptographic Modeto use RSA2048/SHA256 or RSA1024/SHA1. Select [ Next ].
7
Select [ Use CSP Key Storage ]. Select** [ Next ]**.
8
Select the Futurex RSA CSPfrom the CSP drop-down list.
The system attempts to connect to the KMES and query its capabilities.View the logs (the log location is defined in the CSP configuration file) to confirm that the connection was successful and that no errors occurred.
9
Define whether to create a new key or use an existing key. Select [ Next ].
10
Select the AD RMS Cluster WebSite. Select [ Next ].
11
Define the connection method and the Fully Qualified Domain Name for the site. Select [ Next ].
12
Define the SSL certificate parameters. Select [ Next ].
13
Define the Server Licensor Certificate name. Select** [ Next ]**.
14
Select [ Register the SCP now ] and select [ Next ].
15
Select [ Install ].
16
View the logs in the directory defined in the CSP configuration file to confirm that no errors occurred.