Understanding the AD RMS Prelicensing Agent
Applies to: Exchange Server 2007 SP3, Exchange Server 2007 SP2, Exchange Server 2007 SP1
Topic Last Modified: 2008-03-10
You can use the Active Directory Rights Management Services (AD RMS) Prelicensing agent to certify the Microsoft Office Outlook recipient's authenticity so that the recipient can open messages without receiving a credential prompt on every attempt. Before you deploy this agent, make sure that you have performed the following tasks:
Coordinate your deployment plans with your RMS administrator.
Verify that the software on the AD RMS server and the Hub Transport server is upgraded correctly.
Configure the Hub Transport server and the AD RMS Prelicensing agent.
The AD RMS Prelicensing agent is included in Microsoft Exchange Server 2007 Service Pack 1 (SP1). You must be running Exchange 2007 SP1 on all Hub Transport servers in your organization to enable the AD RMS functionality in Exchange 2007.
The AD RMS Prelicensing agent works only with RMS Server 1.0 SP2, or Active Directory Rights Management Services on Windows Server 2008 – X64. The AD RMS administrator typically manages this task.
|If the Exchange server and AD RMS server are in different forests, you must establish a one-way forest trust. The AD RMS Prelicensing agent, which is installed in the Exchange forest, requires access to the forest in which AD RMS resides to query the Active Directory directory service. The AD RMS administrator establishes the trust.|
For information about AD RMS service upgrades and configuration steps, see Planning for the Integration of the Rights Management Services Prelicensing Agent.
For information about the feature changes between Windows Server 2003 and Windows Server 2008, see Terminology Changes.
The AD RMS Prelicensing agent requires the following configuration on the Hub Transport server:
Upgrade the AD RMS client by using Windows RMS Client 1.0 SP2. Or, install Active Directory Rights Management Services client on Windows Server 2008 – X64 on the Exchange 2007 Hub Transport server that hosts the AD RMS Prelicensing agent.
Note: Active Directory Rights Management Services client is installed by default on Windows Server 2008 - X64.
Enable the AD RMS Prelicensing agent.
After the AD RMS upgrade and configuration and the Hub Transport server configuration are complete, e-mail recipients who use Microsoft Office Outlook 2007 or Microsoft Windows Mobile 6.0 can open rights-protected messages without having to submit their credentials. The batching of licensed messages, which is a feature of RMS Server 1.0 SP2, occurs on the AD RMS server or server cluster. The AD RMS Prelicensing agent uses this feature to provide e-mail recipients with easier access to their rights-protected messages.
For more information, see the following topics: