AD RMS with AD FS
AD RMS in a multiple-forest topology needs an AD RMS root cluster in each forest. This topology doesn't require trust between forests but if there is trust, it makes it easier to manage permissions. But, not every partner or business wants trust between forests. They may want to use AD RMS, but they may not want to maintain the AD RMS cluster, or create trust between forests. AD FS allows an organization to use the already-deployed AD RMS cluster in a remote forest. AD FS allows user accounts to use their own credentials, established by a federated trust relationship.
Before we set it up, we need to fulfill certain prerequisites, which are required between federated infrastructures. Refer to https://technet.microsoft.com/en-us/library/dn758110(v=ws.11).aspx ...
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.
Read now
Unlock full access