Disaster recovery of a local Windows 2008 computer (includes non-authoritative restore of Active Directory for a domain controller)

Article:TECH87904  |  Created: 2009-01-11  |  Updated: 2014-02-06  |  Article URL http://www.symantec.com/docs/TECH87904
Article Type
Technical Solution

Product(s)

Subject

Issue



Disaster recovery of a local Windows 2008 computer (includes non-authoritative restore of Active Directory for a domain controller)


Error



Disaster recovery of a local Windows 2008 computer (includes non-authoritative restore of Active Directory for a domain controller)


Solution



Note:
If the system is protected by Backup Exec Intelligent Disaster Recovery (IDR) in BE versions 10-2010 R3, see the IDR section in the Backup Exec Administrator's Guide to restore with IDR. 
If the server is protected by Backup Exec Simplified Disaster Recovery (SDR) in BE versions 2012 and higher, see the SDR section in the Backup Exec Administrator's Guide to restore with SDR. 
The procedure described in the following section is for a manual recovery of a computer not protected by IDR or SDR.
 
This procedure restores the computer's Operating System to its pre-disaster state and will restore all data files, except those protected by one of the Backup Exec database agents. If any of the data is protected by Backup Exec Database agents, refer The Backup Exec Administrator Guide before beginning disaster recovery.
 
Required:
 
1. Latest full backup of the computer to be recovered and any subsequent incremental/differential backups.
2. The Windows 2008 installation media.  
 
Note:
1. To recover a computer that runs Windows Server 2008, it may be necessary to turn on the Windows Bit Locker Drive Encryption option.
2. Always log on to Windows using the Administrator account or its equivalent during this procedure.
 
To recover a Local Windows 2008 computer:

1. Install the original version of Windows 2008.
 
This basic Windows installation is necessary to provide Backup Exec with a target to which it can restore the system. The computer name, Windows directory and the file system (NTFS) must be the same as the previous Windows installation. This basic installation will later be overwritten by the backed up version, which will restore the system configuration, application settings, and security settings. The Windows OS should be updated the service pack it was last working on.
  • If the system is being recovered from hard disk failure, use Windows setup to partition and format the new disk during installation. Format the partitions with the same file system as before the failure.
  • If the system being recovered was in a Domain/ Workgroup pre-disaster, then do not join the Domain/Workgroup.
  • If the system being recovered was a domain controller, then do not install Active Directory.
2. Install Backup Exec for Windows Servers and SQL Express to a directory other than where it was originally installed (this is a temporary installation)
 
Note: Always log on to Windows using the Administrator account or its equivalent during this procedure.
 
3. Using the Device Driver Installation Wizard, install the appropriate device driver for the attached media drive (see "The Device Driver Installation Wizard" in the Backup Exec Administrator's Manual)
 
4. Start Backup Exec for Windows Servers
 
5. From the Devices tab, inventory the media containing the latest full backup of the computer to be recovered
 
6. Catalog the media containing the latest full backup of the computer to be recovered. If the subsequent differential/incremental backups are on separate media, catalog those also.
 
7. From the Restore Selections tab, select all sets from the full and incremental backups that contain logical drives on the hard disk. If differential backup sets are to be restored, select only the last differential set. Make sure to include the System State and Shadow Copy Components as part of the restore selections.
 
8. Click Restore on the toolbar
 
9. From the General Settings, select the following options:
 
  • Restore all information for files and directories (11.x and above) or Restore security (10.x)
  • Preserve tree
  • Restore over existing files

 
10. Click Run Now to start the restore, unless the following condition exists:
 
If the computer being restored is the only domain controller in the domain or if the entire domain is being rebuilt and this is the first domain controller, then perform the following steps:
 
a. From the Advanced Settings, select Mark this server as the primary arbitrator for replication when restoring folders managed by the File Replication Service, or when restoring SYSVOL in System State.
 
b. Click Run Now to start the restore
 
c. Reboot the computer

Note: Step 9 is required only if the Remote system being restored is a Domain Controller.
 
9. If the computer being restored is the only domain controller in the domain or if the entire domain is being rebuilt and this is the first domain controller, then from the ADVANCED tab, select Mark this server as the primary arbitrator for replication when restoring folders managed by the File Replication Service, or when restoring SYSVOL in System State.

 10. Click Run Now to start the restore.
 
11. Once the restore job is successful reboot the remote computer.
 
Step 11 is the last step for Non-Authoritative restore. The computer's operating system is now restored to its pre-disaster state. All data files have been restored, except those protected by Backup Exec database agents.
  
For Authoritative Restore continue to follow Step 12 onwards
 
12. Press <F8> during startup.
 
13. From the Boot options select Directory Services Restore Mode.
 
14. Launch Backup Exec console.
 
15. From the navigation bar, click Restore and select System State component as the restore selections.
 
16. From the Properties pane, under Source, select Resource Credentials.
 
17. Highlight the restore selection for the remote server and click New.
 
18. Create a new logon account for this restore job. The account should be same as the administrator account for DSRM mode on the Windows 2008 Server.
 
19. Select the new logon account and click OK.
 
20. Run the Restore job.
 
Follow the steps below once the Restore job has finished successfully.
 
21. At This point to
 
A). Restore the entire Active Directory:
 
In the following example, the Windows 2008 domain name to restore is bkupexec001.com.
 
  • Run NTDSUTIL
  • Enter "activate instance NTDS" (* Windows default is NTDS.)
  • Enter "Authoritative Restore"
  • Enter "Restore Subtree "dc=backupexec001, dc=com"".

See Microsoft's documentation for running NTDSUTIL for Windows 2008 for more details.  
 
B). Restore specific objects from the Active Directory
 
  • Open command prompt.
  • Type NTDSUTIL and press Enter.
  • Type Authoritative Restore and press Enter.
  • Type Restore Subtree "ou=<OU Name>,dc=<domain name>,dc=<xxx> (without the brackets), and then press Enter.

Note: In the above example <OU Name> is the name of the organizational unit, <domain name> is the domain name in which the OU resides, and <xxx> is the top level domain name of the domain controller, such as com, org, or edu. The above step can be used to restore as many objects as one needs to restore.  
 
22. Exit NTDSUTIL once the restore has finished.  
 
23. Restart the computer.



Legacy ID



331857


Article URL http://www.symantec.com/docs/TECH87904


Terms of use for this information are found in Legal Notices