3.1.4.4 Service Connection Point

To facilitate the discovery of an RMS server, a service connection point (SCP) MAY<30> be defined in Active Directory. RMS clients and servers MAY<31> use the SCP to locate an RMS server that is capable of servicing requests for that directory. The LDAPv3 protocol specified in [RFC3377] SHOULD be used to retrieve the SCP element from Active Directory. The SCP object is stored in a RightsManagementServices container in the config NC of an Active Directory forest. When locating the SCP in Active Directory, an RMS client or server SHOULD search for an object with the objectClass or objectCategory of serviceConnectionPoint and the keywords "MSRMRootCluster" and "1.0". The value of the serviceBindingInformation attribute of the SCP object MUST be the location of an RMS service.

The following sections define the Active Directory objects related to the SCP.