11

DISASTER RECOVERYChapter 13

Chapter 13: DISASTER RECOVERY 2

OVERVIEW

Back up server data using the Backup utility and the Ntbackup command

Restore data from backup media

Schedule backup jobs

Configure security for backup jobs

Chapter 13: DISASTER RECOVERY 3

OVERVIEW (CONTINUED)

Configure shadow copies and restore previous versions

Create an Active Directory backup

Restore Active Directory using the normal, authoritative, and primary restore methods.

Recover a server using the Recovery Console and Automated System Recovery

Chapter 13: DISASTER RECOVERY 4

DETERMINING A BACKUP STRATEGY

Performing regular backups is one of the most important functions of the system or network administrator.

When developing a backup strategy, ask and answer two questions: Why do we back up data?

Why do we need to back up data?

Chapter 13: DISASTER RECOVERY 5

NORMAL BACKUPS

Backs up all files

Clears the archive bit

Can require large data storage capacity

Chapter 13: DISASTER RECOVERY 6

INCREMENTAL BACKUPS

Backs up only files that have been modified or created since the last full or incremental backup

Clears the archive bit

Can require considerably less storage space than a normal backup

Chapter 13: DISASTER RECOVERY 7

DIFFERENTIAL BACKUPS

Backs up only files that have been modified or created since the last full or incremental backup

Does not clear the archive bit

Can require considerably less storage space than a normal backup

Chapter 13: DISASTER RECOVERY 8

COPY BACKUPS

Backs up all files irrespective of archive bit status

Does not change archive bit status

Chapter 13: DISASTER RECOVERY 9

DAILY BACKUPS

Backs up files based on today’s date

Does not change archive bit status

Chapter 13: DISASTER RECOVERY 10

COMBINING BACKUP TYPES

Chapter 13: DISASTER RECOVERY 11

RESTORING DATA

Chapter 13: DISASTER RECOVERY 12

ADVANCED BACKUP AND RESTORE

Volume Shadow Copy service

Backup security

Managing media

Chapter 13: DISASTER RECOVERY 13

UNDERSTANDING THE VOLUME SHADOW COPY SERVICE

The Volume Shadow Copy service (VSS) enables the following: Allows databases and other files that are

held open or locked because of operator or system activity to be backed up.

Allows applications to continue to write data to a volume during backup.

Chapter 13: DISASTER RECOVERY 14

BACKUP SECURITY

Membership in the Backup Operators group should be closely controlled.

Backup media should be stored and transported in a secure manner.

Chapter 13: DISASTER RECOVERY 15

MANAGING MEDIA

Media pools

Catalogs

Chapter 13: DISASTER RECOVERY 16

BACKUP OPTIONS

Chapter 13: DISASTER RECOVERY 17

SCHEDULING BACKUP JOBS

Scheduling allows backups to be performed during off hours.

Scheduling reduces potential for administrative error.

Chapter 13: DISASTER RECOVERY 18

SHADOW COPIES OF SHARED FOLDERS

Periodically saves copies of files

Can be used to restore previous versions of a file

Also used by Windows Server 2003 Backup to make copies of open files

Chapter 13: DISASTER RECOVERY 19

ENABLING AND CONFIGURING SHADOW COPIES

Chapter 13: DISASTER RECOVERY 20

USING SHADOW COPY

Shadow copy allows you to do the following: Recover files that were accidentally deleted

Recover files that were accidentally overwritten

Compare versions of files while working

Chapter 13: DISASTER RECOVERY 21

SYSTEM STATE

Chapter 13: DISASTER RECOVERY 22

BACKING UP AND RESTORING ACTIVE DIRECTORY

The System State object on a domain controller includes Active Directory.

You can back up the system state on a domain controller using the Backup utility or the Ntbackup command.

Chapter 13: DISASTER RECOVERY 23

CREATING AN ACTIVE DIRECTORY BACKUP

Chapter 13: DISASTER RECOVERY 24

SCHEDULING ACTIVE DIRECTORY BACKUP OPERATIONS

Like any other backup job, Active Directory backup operations can be scheduled.

Backups should be performed frequently, because information in Active Directory changes often.

Chapter 13: DISASTER RECOVERY 25

RESTORING ACTIVE DIRECTORY

In some cases it becomes necessary to restore all or part of Active Directory, such as when a server fails or an element of the directory is accidentally deleted.

Active Directory must be restored as part of the System State object. You cannot choose to restore it separately from the other system state components.

Chapter 13: DISASTER RECOVERY 26

ACTIVE DIRECTORY RESTORE METHODS

Three different methods can be used to restore Active Directory on a domain controller: Normal restore (nonauthoritative)

Authoritative restore

Primary restore

Chapter 13: DISASTER RECOVERY 27

PERFORMING A NORMAL RESTORE

A normal restore is performed when you want a domain controller to have the latest version of Active Directory information.

Once the restore is completed, the Active Directory replication process updates the information so that it is brought up-to-date.

Chapter 13: DISASTER RECOVERY 28

PERFORMING AN AUTHORITATIVE RESTORE

An authoritative restore occurs after a normal restore or when a specific part of the directory needs to be restored.

An object marked as authoritative will be replicated to the domain controller’s replication partners.

Authoritative restores are performed using the Ntdsutil utility.

Chapter 13: DISASTER RECOVERY 29

SERVER RECOVERY

Recovery Console

Automated System Recovery

Chapter 13: DISASTER RECOVERY 30

RECOVERY CONSOLE

Chapter 13: DISASTER RECOVERY 31

AUTOMATED SYSTEM RECOVERY

Automated System Recovery (ASR) makes the process of recovering a failed server significantly easier.

ASR creates a floppy disk on which critical system information is stored.

The ASR floppy disk is created by the Automated System Recovery Preparation Wizard, and it is specific to the system and the time at which the ASR set was created.

Chapter 13: DISASTER RECOVERY 32

SUMMARY

You must have the right to back up and restore files to use the Backup utility or any other backup tool.

Copy backups and daily backups can be used to capture files without interfering with the regular backup schedule.

The Backup utility will also allow you to restore backed-up data to the original location or to an alternate location.

VSS allows a user to access previous versions of files and folders in network shares.

Active Directory can be backed up using the Windows Server 2003 Backup utility.

Chapter 13: DISASTER RECOVERY 33

SUMMARY (CONTINUED)

Windows Server 2003 supports three methods for restoring system state data: primary, normal, and authoritative restores.

When Active Directory objects that were deleted or misconfigured need to be restored to previous settings, an authoritative restore must be performed.

The system state includes the registry, startup files, COM+ Class Registration Database, and other service-specific critical system files.

The Recovery Console is a text-mode command interpreter that allows you to access the hard disk and services of a computer running Windows Server 2003.

ASR uses a Setup-like process to return a computer to operation, and it starts a restore operation to recover files from the ASR backup set.