Event ID 204 — AD RMS Cluster Installation

Applies To: Windows Server 2008

Installing the Active Directory Rights Management Services (AD RMS) server role is done by using Server Manager. An AD RMS cluster can be a single-server AD RMS installation or several AD RMS servers installed in a load-balancing environment to handle requests from AD RMS-enabled clients.

Event Details

Product: Windows Operating System
ID: 204
Source: Active Directory Rights Management Services
Version: 6.0
Symbolic Name: GetCertificateHierarchyFailedEvent
Message: Active Directory Rights Management Services (AD RMS) was not able to retrieve the certificate hierarchy.

Resolve

Create AD RMS hierarchy registry entry

Two certificate hierarchies are supported by AD RMS: Production and ISV. You should use the Production hierarchy, except in special scenarios such as when you are developing an AD RMS-enabled application and want to be in the ISV hierarchy. If the certificate hierarchy cannot be determined during the installation of AD RMS, the installation will fail. You must create the hierarchy key, assign it the correct value, and then install AD RMS again.

To perform these procedures, you must be a member of the local Administrators group, or you must have been delegated the appropriate authority.

Create the AD RMS hierachy registry key

To create the AD RMS hierachy registry key:

Caution: Incorrectly editing the registry might severely damage your system. Before making changes to the registry, you should back up any valued data.

  1. On the computer where you are installing AD RMS, click Start.
  2. In the Start Search box, type Regedit, and then press ENTER.
  3. Navigate to HKEY_LOCAL_MACHINE\Software\Microsoft\uDRM.
  4. Right-click uDRM, point to New, and then click DWORD (32-bit) Value.
  5. Name the registry entry Hierarchy.
  6. Right-click Hierarchy, and then click Modify.
  7. Type 0, and then click OK.

Note: Setting this value to 0 will put AD RMS in the production hierarchy.

Install the AD RMS role by using Server Manager

To install the AD RMS role by using Server Manager:

  1. Click Start, point to Administrative Tools, and then click Server Manager.
  2. In the Roles Summary section, click Add Roles, and then click Next.
  3. Select the Active Directory Rights Management Services check box, and then click Next.
  4. Complete the appropriate information in the AD RMS role wizard setup.
  5. Click Install.
  6. When the installation is complete, click Close.

Verify

To perform this procedure, you must be a member of the local AD RMS Enterprise Administrators group, or you must have been delegated the appropriate authority.

To verify that the AD RMS cluster installation is working properly:

  1. Log on to a server in the AD RMS cluster.
  2. Click Start, point to Administrative Tools, and then click Active Directory Rights Management Services.
  3. Verify that the AD RMS cluster was added successfully by expanding the AD RMS cluster name.

AD RMS Cluster Installation

Active Directory Rights Management Services