Export (0) Print
Expand All
1 out of 4 rated this helpful - Rate this topic

AD RMS SQL Server Requirements

Updated: March 19, 2013

Applies To: Windows Server 2008, Windows Server 2008 R2, Windows Server 2012

Servers in the AD RMS cluster are tightly integrated with the database server during normal operations. The AD RMS database server stores configuration, logging, and directory services information for use by AD RMS.

AD RMS uses the following databases:

  • Configuration database

    The configuration database is a critical component of an AD RMS installation. It stores, shares, and retrieves all configuration data and other data that you need to manage account certification, licensing, and publishing services for a cluster. The way that you manage your configuration database directly affects the security and availability of rights-protected content.

    Each AD RMS cluster has one configuration database. The configuration database for the root cluster contains a list of Windows user identities and each rights account certificate (RAC). If the cluster key is centrally managed by AD RMS, the certificate key pair is encrypted with the AD RMS cluster key before it is stored in the database. The configuration databases for licensing-only clusters do not contain this information.

  • Logging database

    For each root or licensing-only cluster, by default AD RMS installs a logging database in the same database server instance that hosts the configuration database. This database can grow quite large; therefore, you will need a plan to help maintain adequate service and performance.

    noteNote
    In Windows Server 2008 and Windows Server 2008 R2, AD RMS created a private message queue on each server in the AD RMS cluster as logging was done using the Message Queuing service. In these earlier releases of AD RMS, the AD RMS logging service would then transmit log data from this message queue to the logging database. For Windows Server 2012, service logging has been redesigned to use synchronous logging which logs directly to the logging database, no longer requiring the Message Queuing or AD RMS Logging services.

    Because AD RMS now writes directly to the logging database, logging performance is improved but availability of the logging database is critical. If the logging database becomes unavailable, the ability to log licensing and certification activity data will be impaired. Therefore, database designs in Windows Server 2012 for AD RMS clusters need to consider all aspects of availability when making planning decisions.

  • Directory services database

    This database caches information about users, identifiers (such as e-mail addresses), security ID (SID), group membership, and alternate identifiers. This information is obtained from Lightweight Directory Access Protocol (LDAP) queries that are made to the Active Directory Domain Services global catalog by the AD RMS licensing service. By default, this data is cached every 12 hours.

The following table describes the hardware requirements for AD RMS SQL Server.

AD RMS SQL Server Hardware Requirements for Windows Server 2012

Hardware Requirements Recommendations

CPU

x86 Processor: 1.0 GHz
x64 Processor: 1.4 GHz

2.0 GHz or higher

Memory

1 GB

At least 4 GB and should be increased as database size increases to ensure optimal performance.

Hard Disk

40 GB of free hard disk space

200 GB of free hard disk space or higher

Network Adapter

1

2 (public and private interface)

Share Disks

External disks for MSCS/SQL configuration

Using RAID 1+0 for logging and RAID 5 for database recommended

The following table describes the software requirements for AD RMS SQL Server.

AD RMS SQL Server Software Requirements for Windows Server 2012

Software Requirements

Operating System*

Windows Server 2012

Windows Server 2008 R2

Windows Server 2008

SQL Server

Microsoft SQL Server 2012 Enterprise Edition, 64-bit editions

Microsoft SQL Server 2012 Standard Edition, 64-bit editions

Microsoft SQL Server 2012 Business Intelligence Edition, 64-bit editions

Microsoft SQL Server 2008 R2 Service Pack 1

Microsoft SQL Server 2008 Service Pack 3

Microsoft SQL Server 2005 Service Pack 3

noteNote
SQL Server 2005 is not supported on Windows Server 2012. If you need to use SQL Server 2005 for AD RMS storage needs it should be on a non-Windows Server 2012 system.

The setup process for AD RMS has been redesigned for Windows Server 2012 to enable better support for remote deployment of AD RMS and SQL servers and to address customer feedback that requested more flexible deployment options.

In prior releases of Windows Server, AD RMS Setup required that the account used to install the AD RMS server role needed to have local administrator privileges on any computers hosting a SQL Server installation that would be used to support AD RMS. This was because AD RMS Setup required the ability to read SQL database settings from the Windows Registry. Because of customer feedback, this has been changed for this release.

For Windows Server 2012, AD RMS now has the following requirements for access to SQL Server.

  • The AD RMS installer account must have sysadmin permissions in the SQL Server instance.

  • For assistance in accessing and locating available SQL Server instances, the SQL Server Browser service must also be running on the server computer where AD RMS is to be installed.

  • SQL Server named instances are supported by AD RMS on both Windows Server 2008 R2 and Windows Server 2012. To use SQL Server named instances, the SQL Server Browser service must be running on the database server.

  • The SQL Server computer that supports AD RMS must have firewall exceptions enabled for well-known SQL Server ports. For example, the SQL Server Browser service uses UDP port 1434 and the default SQL Server TCP port is 1433. These default ports, if used for your SQL Server installation, need to have port exceptions made in Windows Firewall.

  • Additionally, to access SQL Server instances, any non-default TCP ports must be enabled for exceptions that are configured with your SQL Server installation. For default SQL instances, TCP port 1433 is usually assigned. If you have configured any SQL Server instances intended for use with AD RMS so that they are using a non-default TCP port, those ports must be enabled for Windows Firewall exceptions so that AD RMS Setup can connect to your targeted SQL Server installation.

The following table describes the SQL Server hardware requirements for supporting AD RMS.

AD RMS SQL Server Hardware Requirements for Windows Server 2008 and Windows Server 2008 R2

Hardware Requirements Recommendations

CPU

Pentium III processor (800 MHz or higher)

2 Pentium 4 processors (1.5 GHz or higher)

Memory

512 MB of RAM

2 GB of RAM

Hard Disk

20 GB of free hard disk space

160 GB of free hard disk space or higher

Network Adapter

1

2 (public and private interface)

Share Disks

External disks for MSCS/SQL configuration

Using RAID 1+0 for logging and RAID 5 for database recommended

The following table describes the software requirements for AD RMS SQL Server.

AD RMS SQL Server Software Requirements Windows Server 2008 and Windows Server 2008 R2

Software Requirements

Operating System*

Windows Server® 2008 R2 Enterprise

Windows Server® 2008 R2 Datacenter

Windows Server® 2008 R2 Standard

Windows Server® 2008 R2 Foundation

Windows Server® 2008 Standard, 32-bit and 64-bit editions

Windows Server® 2008 Enterprise, 32-bit and 64-bit editions

Windows Server® 2008 Datacenter, 32-bit and 64-bit editions

Windows Small Business Server® 2008 Premium, 32-bit and 64-bit editions

Windows Small Business Server® 2008 Standard, 32-bit and 64-bit editions

Windows Essential Business Server® 2008 Premium, 32-bit and 64-bit editions

Windows Essential Business Server® 2008 Standard, 32-bit and 64-bit editions

SQL Server

Microsoft SQL Server 2005 Enterprise Edition with Service Pack 3, 32-bit and 64-bit editions

Microsoft SQL Server 2005 Standard Edition with Service Pack 3, 32-bit and 64-bit editions

Microsoft SQL Server 2008 Enterprise Edition with Service Pack 2, 32-bit and 64-bit editions

Microsoft SQL Server 2008 Standard Edition with Service Pack 2, 32-bit and 64-bit editions

Microsoft SQL Server 2008 R2 Datacenter Edition, 32-bit and 64-bit editions

Microsoft SQL Server 2008 R2 Enterprise Edition, 32-bit and 64-bit editions

Microsoft SQL Server 2008 R2 Standard Edition, 32-bit and 64-bit editions

ImportantImportant
* Windows Server® 2008 Server Core, Windows® Web Server 2008, Windows Server® 2008 for Itanium-Based Systems, Windows® Web Server 2008 R2, and Windows Server® 2008 R2 for Itanium-Based Systems are NOT supported.

** Support for AD RMS is contingent upon support offering for dependency product.

For additional information about AD RMS and SQL, see AD RMS Performance and Logging Best Practices (http://go.microsoft.com/fwlink/?LinkId=153465).

For additional information about AD RMS, see AD RMS Prerequisites (http://go.microsoft.com/fwlink/?LinkID=154903).

For additional information about SQL Server 2008, see Hardware and Software Requirements for Installing SQL Server 2008 (http://go.microsoft.com/fwlink/?LinkId=182149).

For additional information about SQL Server 2005, see Hardware and Software Requirements for Installing SQL Server 2005 (http://go.microsoft.com/fwlink/?LinkId=182150).

For additional information about SQL Server 2000, see Hardware and Software Requirements for Installing SQL Server 2000 (http://go.microsoft.com/fwlink/?LinkId=182151).

You can use the Windows Internal Database in either Windows Server® 2008 or Windows Server® 2008 R2 to support a new installation of AD RMS using a single server. However, this is supported only in a test environment. It is recommended that you use a separate database server, such as either Microsoft SQL Server 2005 or SQL Server 2008.

ImportantImportant
If you are using the MSDE 2000 to host the Rights Management Services (RMS) databases, you cannot upgrade to AD RMS. An upgrade is supported only if you are using SQL Server 2000 or SQL Server 2005 to host the AD RMS databases. Also, if the upgrade is to AD RMS in Windows Server 2008, SQL 2000 will work. If the upgrade is to AD RMS in Windows Server 2008 R2, it must be either SQL Server 2005 or SQL Server 2008.

User account considerations:

  • If you are using an external database server for the AD RMS databases, the user account that is installing AD RMS must have the right to create new databases. If SQL Server 2005 or SQL Server 2008 are used, the user account must be a member of the System Administrators (sysadmins) database role, or equivalent.

  • If you are using SQL Server remotely, the user account that is installing AD RMS must be a member of the local administrators group on the SQL server. This allows the AD RMS installation to query the registry on the SQL server remotely.

  • The user account that is installing AD RMS will be granted Database Owner permissions on all three of these databases automatically.

Did you find this helpful?
(1500 characters remaining)
Thank you for your feedback

Community Additions

ADD
Show:
© 2014 Microsoft. All rights reserved.