locked
RMS Cluster Location RRS feed

  • Question

  • Hi Team

    We are planning to install RMS and I am making some tests before, but now i have an important question.

    Our Domain is 2003 and we are planning to move to 2012 R2 in a year or two because of some apps incompatibility with schema changes, meanwhile we started to create another Domain that will provide services like Exc2013 and Lync2013 to our users, that domain has two ways trust configured with "Users Domain".

    As U can see we have a "Services Domain" and a "Users Domain" making some research I think I should install RMS (Server 2012 R2) in the "Users Domain" because of users and group membership and global catalog, is it the best way?

    Could you please give some advice?

    Thanks in advance.

    Thursday, November 13, 2014 4:43 PM

Answers

  • Hi Rick,

    Only one Active Directory Rights Management Services (AD RMS) root cluster is permitted per forest. If your organization wants to use rights-protected content in more than one forest, you must have a separate AD RMS root cluster for each forest. Generally in such cases where you have 2 forests but belonging to the same organization and the same Administrators are administering I would go for TPD scenario: http://technet.microsoft.com/en-us/library/dd996639(v=ws.10).aspx

    It is a matter of trust if you can share your RMS private key.. but in this case I think: 'yes".

    Also, you can have a read on this: http://technet.microsoft.com/en-us/library/dd772648(v=ws.10).aspx


    Did my post help you or make you laugh? Don't forget to click the Helpful vote :) If I answered your question please mark my post as an Answer.

    • Marked as answer by Rick Batioja Monday, November 17, 2014 3:45 PM
    Friday, November 14, 2014 11:09 PM

All replies

  • Hi Rick,

    Only one Active Directory Rights Management Services (AD RMS) root cluster is permitted per forest. If your organization wants to use rights-protected content in more than one forest, you must have a separate AD RMS root cluster for each forest. Generally in such cases where you have 2 forests but belonging to the same organization and the same Administrators are administering I would go for TPD scenario: http://technet.microsoft.com/en-us/library/dd996639(v=ws.10).aspx

    It is a matter of trust if you can share your RMS private key.. but in this case I think: 'yes".

    Also, you can have a read on this: http://technet.microsoft.com/en-us/library/dd772648(v=ws.10).aspx


    Did my post help you or make you laugh? Don't forget to click the Helpful vote :) If I answered your question please mark my post as an Answer.

    • Marked as answer by Rick Batioja Monday, November 17, 2014 3:45 PM
    Friday, November 14, 2014 11:09 PM
  • Thanks a lot for that info, valuable!!!.

    I would go for the TDP too.

    Monday, November 17, 2014 3:45 PM