Sign In
Active Directory Rights Management Services (AD RMS) Developer's Corner
The official blog of the Rights Management product team at Microsoft for developers working with information protection using AD RMS.
Options
Blog Home
Email Blog Author
Share this
RSS for posts
Atom
RSS for comments
Search Blogs
Advanced search options...
Search In:
Everything
Blogs
Forums
People
Groups
Places
Pages
Date range:
All Time
Last Year
Last 6 Months
Last 3 Months
Last Month
Last Week
Last Two Days
Tags
access
AD RMS
AD RMS DPAPI 1024 HSM AD RMS Cluster Key Storage
announcements
bootstrapping
Bulk Protection Tool Message Truncation Outlook
classification
client
community
conferences
Developer Story
Exchange
identity
meet the team
mobile
new content
PowerShell
provisioning
R2 Features
reports
RMS
SharePoint
Troubleshooting
webcasts
wiki
Archive
Archives
May 2012
(2)
March 2012
(1)
September 2011
(1)
July 2011
(2)
June 2011
(1)
March 2011
(1)
February 2011
(2)
December 2010
(1)
August 2010
(1)
May 2010
(2)
April 2010
(5)
March 2010
(6)
February 2010
(7)
January 2010
(4)
December 2009
(3)
November 2009
(2)
October 2009
(2)
September 2009
(2)
July 2009
(6)
June 2009
(6)
May 2009
(2)
April 2009
(2)
March 2009
(2)
November 2006
(1)
September 2006
(1)
August 2006
(1)
April 2006
(1)
March 2006
(3)
July 2005
(1)
June 2005
(3)
May 2005
(3)
April 2005
(2)
What is the best way to move RMS deployment from one server to another
MSDN Blogs
>
Active Directory Rights Management Services (AD RMS) Developer's Corner
>
What is the best way to move RMS deployment from one server to another
What is the best way to move RMS deployment from one server to another
rightsmanagement
16 Mar 2006 10:08 PM
Comments
3
First post in the 'Ask John' series
Question
We have deployed RMS on single server and wants to migrate ( move ) RMS to another server. Of course we do not want to lose previous permissions. What is the best way for it ?
John says:
It can be very simple, as long as the following two conditions are met:
1) The Intranet Cluster URL is a FQDN (or a non-machine name); and
2) The database is on a separate server.
If these conditions are met simply build a new server to replace the existing RMS Server, install the RMS Server software on it, and elect to join an existing cluster. You will be prompted for information such as the database server FQDN and the name of the Configuration database. The name of the Configuration database will be DRMS_Config_IntranetClusterFQDN_replacing_dot_with_underscores_PortNum where PortNum is 80 or 443 depending on whether or not you use SSL. Once the cluster has been established, update DNS to point to the new system and turn off the old system (do not put it into Decommission mode, which is something entirely different). I would not destroy the old system until you have tested the new system by obtaining RACs, CLCs, and EULs.
If the two conditions above are not met, especially #1, your best bet is to create a brand new RMS installation using a FQDN for the Intranet Cluster URL and a separate database server (also use a FQDN when specifying the name of the database server), export the SLC, private key, and templates from the existing server and import them to the new server as though creating a Publish Trust. You will then have to add Publish Trust overrides to the Registry of each RMS Client. Turn off the old system and test the new system and the established Publish Trust before destroying the old system. Note that if you have published the serviceConnectionPoint in AD you will need to override the provisioning page URL when you choose to install RMS on this server, replacing ProvisionLicensing.aspx with ProvisionCertification.aspx. You will have to deregister and reregister the serviceConnectionPoint from the new system. A simpler approach is to deregister the serviceConnectionPoint from the old system prior to provisioning the new system and register it from the new.
3 Comments
Comments
Loading...