The service connection point (SCP) for AD RMS identifies the connection URL for the service to the AD RMS-enabled clients in your organization. After you register the SCP in Active Directory Domain Services (AD DS), clients will be able to discover the AD RMS cluster to request use licenses, publishing licenses, or rights account certificates (RACs).
When the AD RMS role is configured on your server, the installation attempts to register the AD RMS SCP, but if it is unable to do so, you can register or change the SCP from the cluster Properties sheet in the Active Directory Rights Management Services console.
If you are registering a service connection point (SCP) from an AD RMS cluster in a child domain, you might receive an error stating that SCP registration failed. In many cases, the registration was successful, but the registration first takes place in the top-level domain and it takes time to replicate to the child domain where the AD RMS cluster checks for the SCP object. As soon as the SCP has been replicated to all global catalog servers in the forest, the message will no longer appear.
Membership in the AD RMS Enterprise Administrators and the Enterprise Admins group in AD DS, or equivalent, is the minimum required to complete this procedure.
To register a service connection point |
-
Log on to a server in the cluster on which you need to register an SCP.
-
Open the Active Directory Rights Management Services console.
-
Right-click the AD RMS cluster, and then click Properties.
-
Click the SCP tab.
-
Select the Change SCP check box.
-
Click the Set the SCP to current certification cluster option, and then click OK.
-
Click Yes to confirm.