You are a network administrator for a company named Contoso, Ltd. You install the Active
Directory Rights Management Services server role on a server. The Active Directory Rights
Management Services (AD RMS) server uses an internal certification authority (CA) for all
certificates. You plan to provide users with the ability to use AD RMS to protect all of the
email messages sent to a partner company named A . Datum Corporation. A . Datum does
not have AD RMS deployed. You need to identify which components from the Contoso
network must be accessible to A . Datum to ensure that the users at A . Datum can open
protected messages. Which two components should you identify? (Each correct answer
presents part of the solution. Choose two.)
A.
The Active Directory domain controllers
B.
The Client Access servers
C.
The certificate revocation list (CRL)
D.
The Mailbox servers
Explanation:
A: Active Directory Rights Management Services (AD RMS) requires at least one Active
Directory domain controller.
You have an Exchange Server organization. The organization contains servers that have
either Exchange Server 2010 or Exchange Server 2013 installed.
Should be A and C.
http://social.technet.microsoft.com/wiki/contents/articles/13130.ad-rms-troubleshooting-guide.aspx
jiminy777, according to the write-up, the answer should be:
1. CRL
2. AD RMS cluster (for URL access)
badly written question maybe? AD RMS Cluster isn’t an option that you can pick here.
But at the other hand, I really have question marks about allowing DC to be accessible directly even if it is coming from a partner.
A and C, I have found a link earlier. Not very nice solution, bit it works.