The three steps that you can do today that will allow you to recover from any AD Rights Management Server failure in the future:
Know your Cluster Key Password and store it somewhere safe
If this is a new install, note the cluster key password and put it in a safe place.
If you inherited the server and the cluster key password isn’t documented, you should change it to something known before backing everything up. To do this, go into the Active Directory Rights Management
Services console under ServerName->Security Policies->Cluster Key Password. Choose the link to “Change Cluster Key Password”.
Export the Trusted Publishing Domain
Saving a copy of the trusted publishing domain can be done from within the AD RMS administration console.
To export the trusted publishing domain
Create a backup of the AD RMS database
AD RMS uses three databases in the database server, so it’s a good idea to understand what they are for:
To create backups of the AD RMS databases
Note Even if you can’t restore the database, you can recover your AD RMS infrastructure with the exported TPD and the Cluster Key Password, but a database restore is preferable.
If you are looking for more additional coverage on AD RMS disaster recovery, check out the
AD RMS Disaster Recovery Guide for Windows Server 2008 and Windows
Server 2008 R2.