Breadcrumbs

Install and Configure the Server Roles AD RMS and IIS

  1. Log on to ADRMS-SRV as utimaco\ADRMSADMIN.

  2. To install AD RMS you have to add it to your current server installation. Start Server Manager (Start Administrative ToolsServer Manager).

  3. Click ADD ROLES in the Roles Summary Box and the Add Roles Wizard is started.

  4. Click NEXT after reading the BEFORE YOU BEGIN section.

  5. Select ACTIVE DIRECTORY RIGHTS MANAGEMENT SERVICES on the Server Role page. It informs you about dependent role services and features.

  6. Internet Information Services (IIS) should be listed as such dependent role. Click ADD REQUIRED ROLE SERVICES and then click NEXT.

  7. Click NEXT after reading the AD RMS introduction page.

  8. Make sure the Active Directory Rights Management Server check box is selected on the Select Role Services page, and click NEXT.

  9. Select the option CREATE A NEW AD RMS CLUSTER and click NEXT.

  10. Check USE A DIFFERENT DATABASE SERVER, click SELECT button, type ADRMS-DB into the Select Computer dialog box and confirm by clicking OK.

  11. Select default as database instance, click VALIDATE, and click NEXT.

  12. Click Specify, type in utimaco\ADRMSSRVC and the password of the account, click OK and NEXT.

ADRMSSRVC is the name of the AD RMS service account, which was created during user configuration with the Active Directory Domain Controller.

  1. Check the USE CSP KEY STORAGE option for storing the AD RMS cluster key, and click NEXT.

  2. Now you should be able to select UTIMACO CRYPTOSERVER CSP as the cryptographic service provider.

  3. Ensure that a new key will be created with the selected CSP, and click NEXT.

  4. Verify that DEFAULT WEB SITE is marked as the web site where the AD RMS will be hosted.

  5. Select the option CHOOSE A CERTIFICATE FOR SSL ENCRYPTION later, and click NEXT.

  6. Type in adrms-srv.utimaco.com (same as FQDN) as a friendly certificate name, and click NEXT.

  7. Select REGISTER THE AD RMS SERVICE CONNECTION POINT NOW to register the AD RMS service connection point (SCP) in Active Directory during the installation, and click NEXT.

  8. Click NEXT after reading the IIS introduction page.

  9. Keep the default check box selections for the Web Server installation, and click NEXT.

  10. Click Install to start the AD RMS installation, and click Close as soon the installation is complete.

Read the next chapter to create a self-signed certificate for SSL connection, and to complete the installation.