Date - 03/2010
Affected Product & Version - NetVault: Backup 8.0 and later
Affected Module & Version - n/a
OS Version - Windows 2000/2003/2008
Application Information - n/a
Description:
How to perform an AUTHORITATIVE SYSVOL restore to recover a Windows Domain Controller in a single Domain Controller environment.
Symptoms:
n/a
=======
WARNING
=======
Only perform this type of recovery if BOTH the following conditions are met:
- The operating environment consists of a single Domain Controller – there are no other Domain Controllers within the organisation.
- The single existing Domain Controller has been lost to disaster, and other hardware has been installed with a new copy of Windows (same version, service pack and patches as the original machine).
1. Install the same version of NetVault on the new machine as was installed on the Domain Controller which was lost to disaster, and add it as a client to the backup server.
2. Reboot the new Domain Controller into “Directory Services Restore Mode” - press F8 during boot and select “Directory Services Restore Mode” in the list of boot methods.
3. On backup server start NetVault GUI.
4. Open the Restore window of NetVault GUI.
5. On the Selections tab, open the NVBU Client that was the backup target.
6. Open the File System node to list all the savesets generated using the plugin.
7. Open the latest saveset.
8. Select C DRIVE and “System State”.
9. Click the Restore Options tab.
10. Enable the following options : “Overwrite Newer Files”, “Reset File Timestamps”, “Live Restore”, “Primary SYSVOL restore”.
11. On the “Target Client” tab, select the new Domain Controller.
12. Submit Restore job.
When the Restore job completes perform the following on the CLIENT (do not reboot the client immediately after the restore completes):
1. Open a Command Prompt (Start – Command Prompt).
2. Type “ntdsutil” and then press ENTER. (‘ntdsutil:’ prompt will appear).
3. Type “authoritative restore” and then press ENTER. (‘authoritative restore’ prompt will appear).
4. Type “restore database” and then press ENTER.
5. When database restore is finished type “quit” and then press ENTER.
6. Restart Windows on the DC as usual.
This process is NOT suitable for simulating disaster and practicing the recovery process if the “live” or “production” Domain Controller and “test” domain controller exist on the same network, and are both booted and running at the same time. Never run a production Domain Controller and a copy of it on the same network at the same time.
BakBone recommends simulating disaster and practicing the recovery process with test hardware on a separate test network.
BakBone SFDC Solution Number: 00005562
