AD RMS Microsoft Federation Gateway Support Installation and Configuration Guide

Applies To: Windows Server 2008, Windows Server 2008 R2, Windows Server 2008 R2 with SP1

Microsoft Federation Gateway Support is a new feature of Active Directory Rights Management Services (AD RMS) introduced in Service Pack 1 (SP1) for Windows Server® 2008 R2. Microsoft Federation Gateway Support enables an AD RMS cluster to federate to the Microsoft Federation Gateway, which acts as a trusted broker between organizations. By establishing these federation relationships, organizations can configure such applications as Microsoft Exchange Server 2010 with SP1 to be able to create messages that are secured by AD RMS and yet can still be accessed by users who belong to an external organization.

Important

Because of changes to the Microsoft Federation Gateway service, if you installed a prerelease version of Windows Server 2008 R2 SP1 and federated with the Microsoft Federation Gateway, you must terminate the federation with the Microsoft Federation Gateway and then enroll with the Microsoft Federation Gateway again. For more information, see Terminating the Federation Relationship and Enrolling and Enabling Microsoft Federation Gateway Support. This change must also be made on any federation partner, such as servers running Microsoft Exchange Server 2010 SP1, that were federated with the Microsoft Federation Gateway during the Windows Server 2008 R2 SP1 beta release period. For information about creating a federated trust between a Microsoft Exchange 2010 organization and the Microsoft Federation Gateway, see Create a Federation Trust (https://go.microsoft.com/fwlink/?LinkID=203461).

About this guide

This guide is intended for AD RMS administrators who want to federate their AD RMS clusters with an external organization by using the Microsoft Federation Gateway. By following the checklist provided in this guide, you should be able to deploy Microsoft Federation Gateway Support on your AD RMS cluster and configure it to establish a federated relationship with one or more external organizations. This guide also provides information on managing Microsoft Federation Gateway Support and removing Microsoft Federation Gateway Support when it is no longer required.

This guide contains the following subjects: