Exchange 2016 OWA integration with AD RMS 2012 R2 issue

We are having problem with Exchange 2016 OWA integration with AD RMS 2012 R2, when a user receives Right Protected email he is unable to see that email and he get  "the message you tried to open is protected with information rights management. Pre-licensing failed. try opening the message again".

I checked AD RMS server, i get these below error:

        Message: The licensee specified in AcquirePreLicense is not valid: user@domain.com.

When I try to run test-IRMConfiguration -sender user@domain.com , output is below:

• Results : Checking Exchange Server ...
                - PASS: Exchange Server is running in Enterprise.
            Loading IRM configuration ...
                - PASS: IRM configuration loaded successfully.
            Retrieving RMS Certification Uri ...
                - PASS: RMS Certification Uri:https://rms url/_wmcs/certification.
            Verifying RMS version for https://rms url/_wmcs/certification ...
                - PASS: RMS Version verified successfully.
            Retrieving RMS Publishing Uri ...
                - PASS: RMS Publishing Uri:https://rms url/_wmcs/licensing.
            Acquiring Rights Account Certificate (RAC) and Client Licensor Certificate (CLC) ...
                - PASS: RAC and CLC acquired.
            Acquiring RMS Templates ...
                - PASS: RMS Templates acquired.
            Retrieving RMS Licensing Uri ...
                - PASS: RMS Licensing Uri:https://rms url/_wmcs/licensing.
            Verifying RMS version for https://rms url/_wmcs/licensing ...
                - PASS: RMS Version verified successfully.
            Creating Publishing License ...
                - PASS: Publishing License created.
            Acquiring Prelicense for 'user@domain.com' from RMS Licensing Uri (https://rms url/_wmcs/licensing) ...
                - FAIL: Failed to acquire Prelicense [Failure Code = InvalidLicensee]!

          Acquiring Use License from RMS Licensing Uri (https://rms url/_wmcs/licensing) ...
              - FAIL: Failed to acquire a use license. This failure may cause features such as Transport Decryption,

Journal Report Decryption, IRM in OWA, IRM in EAS and IRM Search to not work.

Please make sure that the account "FederatedEmail.4c1f4d8b-8179-4148-93bf-00a95fa1e042" representing the

Exchange Servers Group is granted super user privileges on the Active Directory Rights Management Services

server. For detailed instructions, see "Add the Federated Delivery Mailbox to the AD RMS Super Users Group"

athttp://go.microsoft.com/fwlink/?LinkId=193400.

OVERALL RESULT: FAIL

I followed steps in this link: https://social.technet.microsoft.com/wiki/contents/articles/30984.steps-to-configure-irms-in-exchange-2013.aspx except step 5.