Forest B - Domain B - Resource Forest with UserB (disabled), Linked Mailbox - ExternalAccount is UserA
I installed ADRMS in the resource forest and from OWA all is working fine.
Using a client (joined to Domain A), logon with UserA opening Outlook 2010 SP3, the client is unable to verify the user information. I created the SCP in the Domain A, added the RMS site to the Trusted Sites, No proxy.
But is still not working. Any suggestion?
The Domain Controllers and ADRMS server are Windows Server 2012 R2.
One Way trust between the two forest, to let the linked mailbox work smoothly.
If you have a single AD RMS server in the same forest as exchange and the users are in another forest (account forest) then contact objects in the resource forest (where RMS and Exchange are) needs SIDHistory pointing to the account
This allows the users to get a Rights Account Certificate (RAC) from the cross forest RMS server.
Also make sure they have rights to the pipeline urls (if not the will get repeated credential prompts)
Microsoft is conducting an online survey to understand your opinion of the Technet Web site. If you choose to participate, the online survey will be presented to you when you leave the Technet Web site.