Exporting the Server Licensor Certificate

Article
10/02/2012

Updated: October 22, 2009

Applies To: Windows Server 2008 R2, Windows Server 2008 R2 with SP1

Server licensor certificates (SLCs) are exported to be used in establishing trusted publishing domains and trusted user domains. The SLC is also the default user domain certificate, and so the procedure to export the SLC is the same as the procedure to export the default user domain certificate.

Membership in the local AD RMS Enterprise Administrators, or equivalent, is the minimum required to complete this procedure.

To export the server licensor certificate to a file

To determine the name of the SLC, at the Windows PowerShell command prompt, type:

Get-ItemProperty Path <drive>:\ -Name SvrLicCertFriendlyName

where <drive> is the name of the Windows PowerShell drive. Note the name of the SLC under the Value heading.
To determine the ID of the SLC, at the Windows PowerShell command prompt, type:

Get-ChildItem <drive>:\TrustPolicy\TrustedUserDomain

where <drive> is the name of the Windows PowerShell drive. Note the ID of the item whose display name matches the SLC name that you found in the previous step.
To export the SLC, at the Windows PowerShell command prompt, type:

Export-RmsTud -Path <drive>:\TrustPolicy\TrustedUserDomain\<license_ID> -SavedFile <file_path>

where <drive> is the name of the Windows PowerShell drive, <license_ID> is the ID of the SLC that you found in the previous step, and <file_path> is the fully qualified path of the file to which the SLC is being exported.

For example, to export the SLC to C:\MySLC.bin on a server with an AD RMS administration drive named Z and with a default trusted user domain that has an ID of 100, type:

Export-RmsTud -Path Z:\TrustPolicy\TrustedUserDomain\100 -SavedFile C:\MySLC.bin

Share via

Exporting the Server Licensor Certificate

To export the server licensor certificate to a file

See Also

Concepts

Other Resources

Additional resources