Resetting the Private Key Password

Updated: June 1, 2008

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

When you provision a server, select a method to protect the RMS private key. If you chose the default option of using software-based private key protection, a strong password should be specified that was used to encrypt the server private key in the configuration database. If the password is lost or forgotten, a member of the super users group can reset it, as described in "To Reset the Private Key Password" later in this subject.

If you are running RMS in a clustered environment, you must reset the private key on every RMS server in that cluster. If you do not, those servers will not be able function as they will be unable to decrypt the RMS private key in the configuration database.

For more information about strong passwords, see the Windows Server 2003 Help and Support Center.