Windows Server 2008 RMS (Part 3)

by Marin Franković on 2 November, 2008

Here comes the “hard” part. Setting up the infrastructure needed to successfully implement AD RMS in your environment. This method is only recommended if you are testing AD RMS in virtual environment (e.g. Virtual PC 2007 or Virtual Server 2005). We will have two virtual machines: AD RMS server with all roles and? AD RMS client machine.

This is what we will need:

  • Domain controller for the domain
  • AD RMS database
  • AD RMS root cluster
  • AD RMS Client


For AD RMS roles we will be using Windows Server 2008 Enterprise edition and Windows Vista will be our AD RMS client. You can use Windows Server 2003 as domain controller but then you need one more virtual server with Windows Server 2008 to install AD RMS. Since we will install all roles on one server, we will use WIndows Server 2008 for everything.

Setting up DC for our domain:

  1. Install Windows Server 2008 and activate it (rename server to?RMS)
  2. Install AD DS on RMS server (with DNS role included, name the domain DEMO)
  3. Raise domain functional level to Windows Server 2003 minimum


Now we need to create some user account that will be used by AD RMS role:


Account name

User logon name

E-mail address









?Enterprise Admins

?Nicole Holliday



Employees, Finance?

?Limor Henig



?Employees, Marketing?

?Stuart Railson



Employees, Engineering?


After we create user accounts, wee need to create Universal groups in AD and later on add users that we created earlier to these groups:


Group name

E-mail address










Now we need to install SQL Server 2005 on RMS server:

1. Install SQL Server 2005 Standard (or Enterprise)?


  • select SQL database services and Workstation components, Books online and developement tools
  • use built-in system account
  • use Windows Authentication


?2. Install SQL 2005 SP2


Configure AD RMS client:


  • Install Windows Vista on virtual machine
  • Rename it to Client and activate it
  • Add Client virtual machine to DEMO.LOCAL domain
  • Install Office 2007


Note:??Only the Ultimate, Professional Plus, and Enterprise editions of Microsoft Office 2007 allow you to create rights-protected content. All editions will allow you to consume rights-protected content.

Now we have our basic infrastructure set and ready to go. Next time I will show you how to install and configure AD RMS role on our RMS server.

{ 0 comments… add one now }

Leave a Reply

Previous post:

Next post: