Event ID 108 — AD RMS Cluster Installation

  • Article

Applies To: Windows Server 2008 R2

Installing the Active Directory Rights Management Services (AD RMS) server role is done by using Server Manager. An AD RMS cluster can be a single-server AD RMS installation or several AD RMS servers installed in a load-balancing environment to handle requests from AD RMS-enabled clients.

Event Details

Product: Windows Operating System
ID: 108
Source: Active Directory Rights Management Services
Version: 6.1
Symbolic Name: CreateInternetInformationServerResourceEvent
Message: The Active Directory Rights Management Services (AD RMS) installation process failed to create an Internet Information Services (IIS) resource. The installation cannot continue.

Parameter Reference
Context: %1
RequestId: %2
%3
%4

Resolve

Create AD RMS IIS resource

When AD RMS is installed, a new Internet Information Services (IIS) application pool is created using the local SYSTEM account on the AD RMS server as the application pool identity and a new virtual directory, named _wmcs, is created. If the AD RMS administrator account (the user account installing AD RMS)  does not have access to create the virtual directory or the application pool identity's password is different from the password stored in the IIS metabase, the installation will fail and AD RMS must be installed again. Use the procedure "Add the AD RMS administrator account to the IIS home directory" to grant the appropriate permissions to the IIS home directory. If this does not correct the issue, synchronize the application pool identity's account using the "Synchronize the password of the application pool identity account with the password stored in the IIS metabase" procedure. When the issue is resolved, install AD RMS again.

To perform these procedures, you must be a member of the local Administrators group, or you must have been delegated the appropriate authority.

Add the AD RMS administrator account to the IIS home directory

To add the AD RMS administrator account to the IIS home directory:

  1. Click Start, and then click Computer.
  2. Navigate to the IIS home directory. By default, the path to this directory is %systemdrive%:\inetpub\wwwroot, where %systemdrive% is the partition on which Windows is installed.
  3. Right-click wwwroot, and then click Properties.
  4. Click the Security tab, click Edit, and then click Add.
  5. In the Select Users, Computers, or Groups dialog box, type the installing user account, and then click OK.
  6. Select the Full Control check box, and then click OK.
  7. Click OK to close the wwwroot properties sheet.
  8. At a command prompt on the AD RMS server, type iisreset.

Synchronize the password of the application pool identity account with the password stored in the IIS metabase

To synchronize the password of the application pool identity account with the password stored in the IIS metabase:

Note: The application pool identity can be set back to the default setting by clicking the Built-****in account**** option, and then clicking LocalSystem in the above procedure.

  1. Click Start, point to Administrative Tools, and then click Internet Information Services (IIS) Manager.
  2. Expand the AD RMS server, and then click Application Pools.
  3. Right-click _DRMSAppPool1, and then click Advanced Settings.
  4. Under Process Model, click Identity, and then click ....
  5. Click Set.
  6. Type the user name of the identity account in the User name box.
  7. Type the password of the identity account in the Password and Confirm Password boxes.
  8. Click OK two times.
  9. At a command prompt on the AD RMS server, type iisreset.

Install the AD RMS role by using Server Manager

To install the AD RMS role by using Server Manager:

  1. Click Start, point to Administrative Tools, and then click Server Manager.
  2. In the Roles Summary section, click Add Roles, and then click Next.
  3. Select the Active Directory Rights Management Services check box, and then click Next.
  4. Complete the appropriate information in the AD RMS role wizard setup.
  5. Click Install.
  6. When the installation is complete, click Close.

Verify

To perform this procedure, you must be a member of the local AD RMS Enterprise Administrators group, or you must have been delegated the appropriate authority.

To verify that the AD RMS cluster installation is working properly:

  1. Log on to a server in the AD RMS cluster.
  2. Click Start, point to Administrative Tools, and then click Active Directory Rights Management Services.
  3. Verify that the AD RMS cluster was added successfully by expanding the AD RMS cluster name.

AD RMS Cluster Installation

Active Directory Rights Management Services