Event ID 189 — AD RMS Service Connection Point Registration

  • Article

Applies To: Windows Server 2008

Active Directory Rights Management Services (AD RMS) clients use a service connection point (SCP) to automatically discover the AD RMS cluster.

Event Details

Product: Windows Operating System
ID: 189
Source: Active Directory Rights Management Services
Version: 6.0
Symbolic Name: FailedToDeleteServiceConnectionPointFromActiveDirectoryEvent
Message: The Active Directory Rights Management Services (AD RMS) installation failed to delete the existing AD RMS service connection point (SCP) from Active Directory Domain Services. After the installation is complete, register the SCP by using the Active Directory Rights Management Services console with a user account that is a member of the Enterprise Admins group, or equivalent.

Resolve

Register service connection point in AD DS

The AD RMS service connection point (SCP) can be registered automatically during installation. If the AD RMS administrator account (the user account installing AD RMS) does not have appropriate permissions to the Active Directory forest, the SCP will not be automatically registered. If an AD RMS SCP already exists in the forest, the AD RMS administrator account must have access to delete the existing SCP and create a new one.

To perform these procedures, you must be a member of the local AD RMS Enterprise Administrators group and the Active Directory Domain Services (AD DS) Enterprise Admins group, or you must have been delegated the appropriate authority.

To register the AD RMS SCP manually:

  1. Open the Active Directory Management Services console. Click Start, point to Administrative Tools, and then click Active Directory Rights Management Services.
  2. Right-click the AD RMS cluster, and then click Properties.
  3. Click the SCP tab.
  4. Select the Change SCP check box.
  5. Select the Set SCP to current certification cluster option, and then click OK.

Verify

Verification of the AD RMS service connection point is achieved by using the Active Directory Rights Management console.

To perform this procedure, you must be a member of the local AD RMS Enterprise Administrators group, or you must have been delegated the appropriate authority.

To verify that the AD RMS service connection point (SCP) is registered:

  1. Open the Active Directory Management Services console. Click Start, point to Administrative Tools, and then click Active Directory Rights Management Services.
  2. Right-click the AD RMS cluster, and then click Properties.
  3. Click the SCP tab.
  4. In the Current SCP box, verify that the correct SCP is displayed.
  5. Click OK.

AD RMS Service Connection Point Registration

Active Directory Rights Management Services