Active Directory Right Management Services: Installation and Configuration


Windows Server 2019

Deploying AD RMS roles

Installing Roles for AD RMS

From the server manager, click Add Roles and Features 1 .
Setting up roles for AD RMS

When launching the wizard, click Next 1 .
installation wizard

Type of installation, choose Role Based Installation or 1 Functionality and then click Next 2 .
Install type

Select server 1 and click Next 2 .
Select server for AD RMS

In the list of roles, select the AD RMS (Active Directory Right Management) 1 Services check box.

Select role AD RMS

Confirm adding dependencies to the role by clicking Add 1 features.
Adding dependencies

The AD RMS role is now ticked 1 , click Next 2 .
AD RMS checked

Skip the list of features by clicking Next 1 .
Skip features

A summary of the AD RMS role is displayed, click Next 1 .
AD RMS Overview

Select the Rights Management Server 1 Active Directory service and click Next 2
Select AD RMS Service.

Pass the IIS role summary by clicking Next 1 .
IIS Overview

Click Next 1 to validate IIS role services.
IIS services

Confirm the installation by clicking the Install 1 button.
Confirm install

Wait during the installation …
Wait during the installation Wait during the installation

The installation completed, exit the wizard by clicking Close 1 .
Installation completed

AD RMS post-deployment configuration

Before running the Post Deployment Configuration Wizard, install the certificate in IIS.
IIS certificate installed

Once the certificate is installed, return to the Server Manager, click on the notification icon 1 and click on Perform additional configuration 2 .
Post installation assistant

When the wizard launches, the summary of AD RMS services is displayed again, click Next 1 .
Overview AD RMS Service

Choose the Create a new AD RMS root cluster 1 option and click Next 2 .
New AD RMS Cluster

Choose User Windows Internal Database on this server 1 and click Next 2 .
Select SQL Server

Indicate the service account created at the beginning 1 and click Next 2 .
Service account

Choose the encryption mode 2 1 then click Next 2 .
Encryption mode

Configure key storage by selecting User Centrally Managed AD RMS Key Storage 1 and clicking Next 2 .
key storage

Enter the password for cluster 1 and click Next 2 .
AD RMS cluster password

This password will be required to join from another server to the AD RMS cluster.

Choose the site used IIS for AD RMS 1 then click Next 2 .
Select IIS

Choose the type of SSL connection 1 , enter the domain name of the cluster 2 (URL) and click Next 3 .
Configure url

Choose the certificate that corresponds to the DNS name of cluster 1 then click Next 2 .
Select certicate

If necessary, change the name of the server license certificate 1 and click Next 2 .
Name of the license certificate

Choose the option Save service connection bridge now 1 and click Next 2 .
Scp recording

A summary of the configuration is displayed, click on Install 1 .
Confirm configuration

Wait during the configuration ….
Application de configuration AD RMS Application de configuration AD RMS

Once the configuration is applied, exit the wizard by clicking Close 1 .
Applied configuration

The installation and configuration of the AD RMS service is complete, the service can now be used by users with a compatible version of Office.




Leave a Comment