In the process of testing out RMS on a Win 2008 R2 server. The installation completed with out issue and using Office 2007 it appears the basic functionalty is working as designed. The long term plan is to deploy additional RMS servers at our major sites. The current certificate is internally issued. My question is in regards to getting a certificate from a public Root CA. Do I regsiter the internal fully domain name qualified during the certificate generation process or corproate.mycompany.com or my internet domain name mycompnay.com.

On Thu, 13 Jan 2011 15:14:56 +0000, Michael Haskell wrote: In the process of testing out RMS on a Win 2008 R2 server.? The installation completed with out issue and using Office 2007 it appears the basic functionalty is working as designed.? The long term plan is to deploy additional RMS servers at our?major sites.?? The current certificate is internally issued.? My question is in regards to getting a certificate from a public Root CA.? Do I regsiter the internal fully domain name qualified during the certificate generation process or corproate.mycompany.com or my internet domain name mycompnay.com. While there is a forum here that is specific to RMS, your question is an easy one to answer. You don't get a certificate for RMS from a public CA at all since it doesn't use X.509 certificates. RMS uses xRML certificate which are completely different from X.509 certificates used by a PKI. Paul Adare MVP - Identity Lifecycle Manager http://www.identit.ca Want custom ringtones on your Windows Phone 7 device? FIFO: Common name for a dog.

Just a slight correction. Of course the RMS uses XrML certificates (for its internal purposes), but if you use HTTP over SSL it also uses X.509 certificates. I have discussed similar subject here http://social.technet.microsoft.com/Forums/en-US/rms/thread/ab2eefff-ae95-4e8d-b602-a32da0eed004 . In general RMS needs to have it's internal and external hostnames in the X.509 certificate (this can be slightly different if you use ISA server for RMS server publishing to Internet). You can find these in RMS console: Intranet cluster URLs and Extranet cluster URLs. Martin