As a best security practice, AD RMS should be installed with a Secure Sockets Layer (SSL) certificate used for Web communications. A certificate trusted by a certification authority is recommended.
If you decide to use an SSL certificate in your AD RMS installation, you can either add the certificate during the AD RMS installation or import the certificate after installation is complete. To import the certificate after AD RMS is installed, do the following steps:
Membership in the local Administrators group, or equivalent, is the minimum required to complete this procedure.
|To import an SSL certificate using Internet Information Services (IIS) Manager|
Click Start, point to Administrative Tools, and then click Internet Information Services (IIS) Manager.
If the User Account Control dialog box appears, confirm that the action it displays is what you want, and then click Yes.
Click the local computer, and then double-click Server Certificates.
In the Actions pane, click Import.
In the Certificate File (.pfx) box, type the path to the SSL certificate.
In Password, type the password that was used to create this certificate, and then click OK.