To Add a Trusted Publishing Domain

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

To perform this procedure, you must be logged on locally to the administration Web site with a domain user account that is a member of the Administrators group. As a security best practice, consider using Run as to perform this procedure.

If you are using a hardware security module (HSM) to protect your RMS private key and you are importing a server licensor certificate from an RMS installation that uses software-based private key protection, you must specify a private key password on the Security settings page of each RMS server in the cluster before you attempt to import the certificate.

Adding a Trusted Publishing Domain

To Add a Trusted Publishing Domain

1. Log on to computer with a user account that is a member of the local Administrators group.

2. Click Start, point to All Programs, point to Windows RMS, and then click Windows RMS Administration to open the Global Administration page.

3. Next to the Web site on which you want to add a trusted publishing domain, click Administer RMS on this Web site.

4. In the Administration links area, click Trust policies.

5. In the Trusted publishing domains area, click Browse. Locate and double-click the certificate of the publishing domain that you want to add. In Password to decrypt the file being imported, type the password needed to decrypt this file, and then click Import.

   The password-encrypted file contains the server licensor certificate, RMS private key (if the key is stored in software), and any rights policy templates.

6. The name of the domain appears in the Trusted publishing domains list.

For more information about how to perform this procedure, see "Adding and Removing Trusted Publishing Domains" earlier in this subject.