I'm going to show you how to install and configure AD RMS cluster.
Here with some little information of my setup.
- 2 AD RMS servers - named RMS01 and RMS02. . Both AD RMS servers will need to join domain.
- A MS SQL cluster server. I will not show you the MS SQL installation here.
- Both AD RMS servers will be load balanced by hardware load balance. I will not show you the HLB configuration here
- A SAN certificate which will be used for OWA, EAS, OA & RMS publishing. I'm using a certificate issued by DigiCert. Example for SAN name: mail.external.com; autodiscover.external.com; rms.external.com
Pre-Requisite
1. Import Certificate
The importing certificate into RMS01 and RMS02 is similar as importing certificate for UAG01 or UAG02 in Install and Configure UAG 2010 - Part 1
2. Domain Account and Distribution Group
Create the following ID in domain and create distribution group in Exchange.
The RMSSU is a distribution group with Federated mailbox as the member of RMSSU. I will show you in the later post when integrating with IRM in Exchange.
3. MS SQL Browser Service
Logon
ID
|
Member
of
|
Remarks
|
RMSAdmin
|
Domain
Users, Active Directory Rights Management Services Enterprise Administrators
of local RMS, Administrators Group of local RMS, Administrators Group of
local SQL Server, System Administrators (sysadmins) database
|
Active
Directory Rights Management Services Enterprise Administrators, System Administrators (sysadmins) database
|
RMSSU
|
NA
|
Distribution
group for RMS Super User Group
|
RMSSvc
|
Domain
Users, Administrators Group of local RMS
|
AD
RMS service account
|
3. MS SQL Browser Service
Install the MS SQL browser service into both AD RMS servers. This service can be obtained from the MS SQL setup disc. This MS SQL browser service is required for AD RMS to access MS SQL instance. You may get more information from technet - AD RMS SQL Server Requirements
No comments:
Post a Comment