First check to see if local accounts or the Administrators group has been denied access to the RMAD server over the network:
- Launch the “local security policy” editor by clicking Start, typing secpol.msc and hit enter
- Expand Local Policies | User Rights Assignment
- Scroll down to "Deny access to this computer from the network"
- If "Local account and and member of Administrators group" is set remove it
Disable UAC Remote Restrictions by creating a DWORD named LocalAccountTokenFilterPolicy under the following:
Set the value of the new DWORD to 1
Please see the following for more information:
Use a Non-Administrative share:
- Unregister the backups in the RMAD console
- Share the folder where the backups are stored by right clicking the folder, selecting Properties, select the Sharing tab, click Advanced Sharing, click Permissions, add the Everyone group and give it Read permissions and click OK
- Then in the RMAD console re-register your backups using the share name “\\<host IP>\ShareName\...”:
- Expand Backups
- Right click Active Directory and select Register backups in folder
- For the folder path type \<host IP>\ShareName\... NOTE: Do NOT re-register using the local path
Disable UAC by setting the EnableLUA reg key value to 0, which is found under:
NOTE: This will require a reboot of the RMAD server
Re-apply the NTFS permissions to the folders containing the BMR backups.
If they appear correct, try adding the "Backup access account" directly with full control.
Enhancement request number ADO-266184 has been submitted to Development for consideration in a future release of Recovery Manager for Active Directory Disaster Recovery Edition, to improve the error messaging when this does occur, to indicate the access denied.