SBS 2003 R2 Disaster Recovery

Small Business Small Business Server Disaster Server Disaster RecoveryRecovery

Small Business Small Business Server Disaster Server Disaster RecoveryRecovery

Wayne Small SBS-MVPWayne Small SBS-MVPTechnical DirectorTechnical DirectorCorrect Solutions Pty LtdCorrect Solutions Pty LtdSBSfaq.comSBSfaq.com

SBS Disaster RecoverySBS Disaster RecoveryIt all works like normal – on one server, or multiple It all works like normal – on one server, or multiple serversservers

Illustration Courtesy of Illustration Courtesy of SBSmigration.com

http://www.sbsmigration.com/

SBS Disaster RecoverySBS Disaster RecoveryIt all works like normal – use one server, or multiple It all works like normal – use one server, or multiple serversservers

SBS 2003 or R2 can be recovered, SBS 2003 or R2 can be recovered, repaired, or replaced without impact to the repaired, or replaced without impact to the domain using only a Full Server and domain using only a Full Server and System State restore via the included SBS System State restore via the included SBS Backup program.Backup program.

More options can be better…More options can be better…

All remaining discussion on this topic relates All remaining discussion on this topic relates more to risk mitigation, or faster recovery time.more to risk mitigation, or faster recovery time.

Application tuned incremental recovery options Application tuned incremental recovery options exist.exist.

Drive Imaging or 3Drive Imaging or 3rdrd Party Backup products are Party Backup products are best viewed as optional, but valuable.best viewed as optional, but valuable.

SBS is a Bad DR Risk?SBS is a Bad DR Risk?Myth: SBS Domain DC OptionsMyth: SBS Domain DC Options

Probably this concern is very overblownProbably this concern is very overblown

Most continuity options & DR strategies from non-Most continuity options & DR strategies from non-SBS domain and servers apply to SBS as well SBS domain and servers apply to SBS as well

Any single server environment has challenges, Any single server environment has challenges,

but this is what the budget limited market needs for now. but this is what the budget limited market needs for now.

SBS domain allows adding separately licensed servers.SBS domain allows adding separately licensed servers. Typically this has a lower cost than non-SBS!Typically this has a lower cost than non-SBS!

Multi-Server, Multi-DC, Fault-Tolerant options Multi-Server, Multi-DC, Fault-Tolerant options areare available available

#1 Hurdle in SBS DR is unrelated to SBS licensing#1 Hurdle in SBS DR is unrelated to SBS licensingNamespace dependent application serverNamespace dependent application server

– – plus –plus –

Coincidental DC/Exchange on one boxCoincidental DC/Exchange on one box

Windows Small Business Server Windows Small Business Server 20032003SBS 2003 Standard EditionSBS 2003 Standard Edition

Windows 2003 Server Domain ControllerWindows 2003 Server Domain Controller

Exchange 2003 ServerExchange 2003 Server

Fax / Print & File ServerFax / Print & File Server

Sharepoint Server / Collaboration Sharepoint Server / Collaboration

Remote Web WorkplaceRemote Web Workplace

Automated Deployment and Management ToolsAutomated Deployment and Management Tools

Monitoring and Remote ManagementMonitoring and Remote Management

Extremely nice OS & CALs price pointExtremely nice OS & CALs price point

[ New in R2: WSUS 3.0 Management Integrated to MMC 3.0][ New in R2: WSUS 3.0 Management Integrated to MMC 3.0]

SBS 2003 Premium Edition SBS 2003 Premium Edition SQL Server 2000 SQL Server 2000 [ R2: 2005 Workgroup ][ R2: 2005 Workgroup ]

ISA Server 2000 or 2004 ISA Server 2000 or 2004 [ R2: 2004 ][ R2: 2004 ]

Migration & DR Methods too Migration & DR Methods too often Abandon the SBS Domainoften Abandon the SBS Domain

ProductionProduction

DomainDomain NewNew

DomainDomain



SBS 2003 Server SBS 2003 Server ResponsibilitiesResponsibilities



SBS Disaster Recovery: MythsSBS Disaster Recovery: Myths

SBS Domain DC OptionsSBS Domain DC Options

Hardware Device DependencyHardware Device Dependency

Different Hardware RecoveryDifferent Hardware Recovery

Myths: System Repair OptionsMyths: System Repair Options

Recovery and Maintenance PlanningRecovery and Maintenance Planning

Only 1 DC in SBS Domain?Only 1 DC in SBS Domain? Myth: SBS Domain DC OptionsMyth: SBS Domain DC Options

All SBS versions allow All SBS versions allow multiple-DCsmultiple-DCs

SBS is constrained to retain all FMSO rolesSBS is constrained to retain all FMSO roles

Only one SBS may permanently operate in Only one SBS may permanently operate in a single domain.a single domain.

All SBS

SBS can’t Join Existing Domain?SBS can’t Join Existing Domain? Myth: SBS Domain DC OptionsMyth: SBS Domain DC Options

SBS 2003 CD1 Setup bootSBS 2003 CD1 Setup boot (including OEM (including OEM releases) allow SBS to install into an existing releases) allow SBS to install into an existing compliant domaincompliant domain

EULA allows Time-limitedEULA allows Time-limited use of a second SBS use of a second SBS 2003 in an SBS domain for transitions / upgrades 2003 in an SBS domain for transitions / upgrades In-Place UpgradeIn-Place Upgrade of existing 200x DC can allow of existing 200x DC can allow SBS 2003 or R2 to install into existing domainSBS 2003 or R2 to install into existing domainADMT migrationADMT migration from an existing domain from an existing domain preserves object SIDs, but not the domain itself.preserves object SIDs, but not the domain itself.

SBS 2003

SBS FSMO Constraints are a SBS FSMO Constraints are a Risky and Major Recovery Risky and Major Recovery Problem?Problem? Myth: SBS Domain DC OptionsMyth: SBS Domain DC Options

Flexible Server Management Operations (FSMO) Flexible Server Management Operations (FSMO) roles are system operation authority which can be roles are system operation authority which can be moved…by transfer or seizuremoved…by transfer or seizure..

All DCs in a common domain maintain identical All DCs in a common domain maintain identical full catalog copies of that AD domain by defaultfull catalog copies of that AD domain by default

Global Catalog (GC) roles are not required to Global Catalog (GC) roles are not required to distribute a complete replica inside a single distribute a complete replica inside a single domain modeldomain model

SBS 200x Win 200x

Can’t Recover Domain from Dead DC or Can’t Recover Domain from Dead DC or SBS?SBS? Myth: SBS Domain DC OptionsMyth: SBS Domain DC Options““Graveyard Swing Migration” can Graveyard Swing Migration” can

successfully pull back not only a server but successfully pull back not only a server but a domaina domain

A recovery server replaced by Swing A recovery server replaced by Swing Migration with a clean server… preserves Migration with a clean server… preserves the domainthe domain

Dead solo DC is not the end of the domainDead solo DC is not the end of the domain

Backup DC and recovery of AD on a dead Backup DC and recovery of AD on a dead DC provide very similar recovery optionsDC provide very similar recovery options

SBS 200x Win XP/200x

AD “Swing Migration” MethodAD “Swing Migration” MethodMigration based on Disaster Recovery Migration based on Disaster Recovery TechniquesTechniques







System Repair OptionsSystem Repair Options

Recovery and Maintenance PlanningRecovery and Maintenance Planning

IDR “Recovery Automation” IDR “Recovery Automation” is Most Reliable?is Most Reliable? Myths:Myths: Hardware Device DependencyHardware Device Dependency

Independent Disaster Recovery (IDR) is a Independent Disaster Recovery (IDR) is a generalize name for 3generalize name for 3rdrd party product automation party product automation for “boot to restore” or “click to restore”for “boot to restore” or “click to restore”

Many IDR solutions require Many IDR solutions require identical hardwareidentical hardware

IDR systems can have “fragile” requirements, IDR systems can have “fragile” requirements, truly must truly must be tested. be tested.

IDR product marketing should be validated!IDR product marketing should be validated!

Testing IDR can be tricky unless you haveTesting IDR can be tricky unless you haveAccess to identical hardwareAccess to identical hardware

Alternative Drive to substitute for test restoreAlternative Drive to substitute for test restore

Time & Budget to take the business offlineTime & Budget to take the business offlineSBS 200x Win XP/200x

Best DR plan needs On-Site Best DR plan needs On-Site Duplicate Cold Hardware?Duplicate Cold Hardware? Myths:Myths: Hardware Device DependencyHardware Device Dependency

Myth is that you can only be really prepared with Myth is that you can only be really prepared with identical cold server on-siteidentical cold server on-site

This is only This is only oneone DR approach, DR approach, oneone DR issue, DR issue, oneone resolution pathresolution path

Practical answer is that this solves some problems Practical answer is that this solves some problems that have alternative options, but may introduce a that have alternative options, but may introduce a confusionconfusionLive network protection can be just as effectiveLive network protection can be just as effectivePlanning for identical hardware recovery steps is a Planning for identical hardware recovery steps is a bad plan…it’s an exception.bad plan…it’s an exception.


Replace SBS NIC not Allowed Replace SBS NIC not Allowed Without Microsoft Support?Without Microsoft Support? Myths:Myths: Hardware Device DependencyHardware Device Dependency

SBS 4.x versions did indeed bind the SBS 4.x versions did indeed bind the licensing engine to the GUID of the primary licensing engine to the GUID of the primary NICNIC

SBS 2000 and later dropped that featureSBS 2000 and later dropped that feature

SBS NIC Replacement is allowed, but SBS NIC Replacement is allowed, but remains as complicated as any scenario of remains as complicated as any scenario of NIC replacement in a DC.NIC replacement in a DC.







Recovery and Maintenance Recovery and Maintenance PlanningPlanning

Drive Image Restore to New Drive Image Restore to New Hardware Won’t Work for DR?Hardware Won’t Work for DR? Myths: Different Hardware Recovery Myths: Different Hardware Recovery (1 of 3)(1 of 3)

““Alien image restore” works, but has issuesAlien image restore” works, but has issues

Boot critical conditions must be met:Boot critical conditions must be met:Compatible HALCompatible HAL

Accurate boot.ini, consistent Boot Device orderAccurate boot.ini, consistent Boot Device order

Boot critical drivers installedBoot critical drivers installed

Repair resolution paths are availableRepair resolution paths are available

Look at Look at newnew 3 3rdrd party drive imaging party drive imaging productsproducts


Restore of System State Restore of System State to new Hardware is Unreliable?to new Hardware is Unreliable? Myths: Different Hardware Recovery Myths: Different Hardware Recovery (2 of 3)(2 of 3)

It works – A Disaster Recovery specialist needs It works – A Disaster Recovery specialist needs this skill to be successful and empowered.this skill to be successful and empowered.

Domain Controllers (including SBS) present Domain Controllers (including SBS) present challenges, special concerns for AD restore, challenges, special concerns for AD restore, Exchange, SQL, MonitoringExchange, SQL, Monitoring

Baseline install or (same hardware) ASR disk Baseline install or (same hardware) ASR disk adequately prepared for an overlay restore of adequately prepared for an overlay restore of alien System State.alien System State.

Segmented Multi-Step restore may be necessary, Segmented Multi-Step restore may be necessary, better to have skill than rely only upon an better to have skill than rely only upon an automation tool.automation tool.

ASR Disks don’t work for bare metal restore to ASR Disks don’t work for bare metal restore to different hardwaredifferent hardwareSBS 200x Win

XP/200x

““Drive-Slide” Relocation to new Drive-Slide” Relocation to new Server Hardware will Usually Server Hardware will Usually fail?fail? Myths: Different Hardware Recovery Myths: Different Hardware Recovery (3 of 3)(3 of 3)

Another of the three abandoned step-Another of the three abandoned step-children of related misconceptions on children of related misconceptions on System State, drivers and boot System State, drivers and boot configurationsconfigurations

Same rules apply as with alien disk cloning Same rules apply as with alien disk cloning or alien System State restoresor alien System State restores








Windows Service Pack Reinstall Windows Service Pack Reinstall will Repair a BSOD?will Repair a BSOD? Myths: System Repair OptionsMyths: System Repair Options

Reinstalling a Service Pack generally Reinstalling a Service Pack generally will not will not repairrepair missing files and registry entries for an missing files and registry entries for an Operating SystemOperating System

Windows 200x and XP introduced Service Pack Windows 200x and XP introduced Service Pack files stored in a local cache folder, therefore files stored in a local cache folder, therefore already available.already available.

In-Place Upgrade as a repair In-Place Upgrade as a repair will be helpfulwill be helpful

Reinstalling Application SPs generally Reinstalling Application SPs generally is helpfulis helpful for for

a repaira repair


You can Boot or Restore You can Boot or Restore Windows to a “Known Good Windows to a “Known Good Condition”?Condition”?Myths: System Repair OptionsMyths: System Repair Options

Windows 2003 is the only OS version that Windows 2003 is the only OS version that actually can accomplish this…with caveat: actually can accomplish this…with caveat: bare bare metal restoremetal restore..

Short-Filename (SFN) restore breaks cause Short-Filename (SFN) restore breaks cause fracture of registry/filepath alignmentfracture of registry/filepath alignment

Windows 2000, XP, NT, 9x/ME cannot restore file-Windows 2000, XP, NT, 9x/ME cannot restore file-by-file to a known condition…not with NT Backup by-file to a known condition…not with NT Backup or 3or 3rdrd Party… the Party… the flaw is in the Windows APIflaw is in the Windows API

Cold Drive Imaging is the only consistent solution Cold Drive Imaging is the only consistent solution for true restore to previous good conditionfor true restore to previous good condition

SBS 200x Win NT/ME/9x

Win XP/200x

ASR Recovery Disk is Required ASR Recovery Disk is Required to Make a Complete Restore?to Make a Complete Restore? Myths: System Repair OptionsMyths: System Repair Options

ASR disk is a restore accelerator, but not required.ASR disk is a restore accelerator, but not required.

The backup set made with an ASR is no different The backup set made with an ASR is no different than what is created without requesting the ASRthan what is created without requesting the ASR

ASR disk is machine specific, so not valuable in ASR disk is machine specific, so not valuable in restore to replacement serverrestore to replacement server

SBS 2003 Win 2003

It’s Best to Build Clean New It’s Best to Build Clean New Domain if SBS is too Dirty to Domain if SBS is too Dirty to Fix?Fix? Myths: System Repair OptionsMyths: System Repair OptionsThis likely will lead to reconfiguration on all PCsThis likely will lead to reconfiguration on all PCs

Workstation impact of new domain must be Workstation impact of new domain must be considered.considered.Actual corruption of Active Directory is rare and Actual corruption of Active Directory is rare and generally generally should not be assumedshould not be assumed..Saving the AD domain is almost always the Saving the AD domain is almost always the preferable course, and it isn’t hard.preferable course, and it isn’t hard.Mis-configured Group Policies make for bizarre Mis-configured Group Policies make for bizarre behaviorbehaviorGroup Policies are typically simple to repair or Group Policies are typically simple to repair or replace, but this is widely misunderstood.replace, but this is widely misunderstood.Applications and databases can be moved as dataApplications and databases can be moved as data

SBS 200x Win NTWin 200x







One Big C Partition is Best?One Big C Partition is Best? Myths: Recovery and Maintenance Myths: Recovery and Maintenance Planning Planning

Oh, Please Oh, Please No!!No!!

Disaster Recovery from one large partition is Disaster Recovery from one large partition is much more complicated, time consuming and much more complicated, time consuming and generally more at the risk of data lossgenerally more at the risk of data loss

Repairs may involve rolling back data for no Repairs may involve rolling back data for no reason other than uncertainty about the partitionreason other than uncertainty about the partition

Best Scenario is isolated partitions for:Best Scenario is isolated partitions for:System BootSystem Boot

Client/Server Application DatabasesClient/Server Application Databases

User FilesUser Files

SBS 200x Win NTWin 200x

OEM Media can Only Build New OEM Media can Only Build New Domain Installation?Domain Installation? Myths: Recovery and Maintenance Planning Myths: Recovery and Maintenance Planning

Actually, this is rarely the case: Request OS Actually, this is rarely the case: Request OS installation media rather than preconfigured installation media rather than preconfigured “recovery disks”.“recovery disks”.

Most OEMs will provide standard install media…Most OEMs will provide standard install media…you should always order it…and a standard floppy you should always order it…and a standard floppy drivedrive

OEM media cannot be used for in-place upgrade OEM media cannot be used for in-place upgrade repairs of non-OEM installationsrepairs of non-OEM installations

SBS 200x Win 200x

Boot-Time Rollback Options can Boot-Time Rollback Options can SP or Patch Update Failure? SP or Patch Update Failure? Myths: Recovery and Maintenance Planning Myths: Recovery and Maintenance Planning

Don’t count on it!Don’t count on it!

Boot to “Last Known Good Condition” recovers Boot to “Last Known Good Condition” recovers only previous System Registry settings, but not only previous System Registry settings, but not other registry hives other registry hives or any driver filesor any driver files

Only a System State Restore offers general roll-Only a System State Restore offers general roll-back, and not even that will always work…but it back, and not even that will always work…but it usually doesusually does

33rdrd Party product solutions could help with sector Party product solutions could help with sector based “delta” roll-back on drive writesbased “delta” roll-back on drive writes


SBS Disaster Recovery: SBS Disaster Recovery: MysteriesMysteries

Boot FailuresBoot Failures

Running Setup…as a Repair StepRunning Setup…as a Repair Step

Exchange Store Repair & MountExchange Store Repair & Mount

SBS Backup ServicesSBS Backup Services

Crashed RAID5 not dead yet?Crashed RAID5 not dead yet? MysteryMystery

RAID5 drive volume set become RAID5 drive volume set become unrecoverable if more than N – 1 drives go unrecoverable if more than N – 1 drives go offline? offline?

BustedBusted

A hardware RAID can typically be A hardware RAID can typically be recovered by a proprietary step to “force” recovered by a proprietary step to “force” the configuration to ignore a fault flag. The the configuration to ignore a fault flag. The drive set can be mounted in the last stored drive set can be mounted in the last stored condition, which may or may not be condition, which may or may not be reliable.reliable.

A “hot” spare usually protects from such A “hot” spare usually protects from such issuesissuesSBS 200x Win 200x

Boot Failure AnalysisBoot Failure Analysis MysteryMystery

Resolution of a Boot Failure is difficult & Resolution of a Boot Failure is difficult & unpredictableunpredictable

Busted Busted (If I can do anything about it!)(If I can do anything about it!)

Actually not that hard, if you determine where in Actually not that hard, if you determine where in the boot cycle the failure is occurring. How to the boot cycle the failure is occurring. How to know that?know that?1.1. Hardware Boot (BIOS Control transition to Device Hardware Boot (BIOS Control transition to Device

Selection)Selection)

2.2. Master Boot Record (Device based transition to OS boot Master Boot Record (Device based transition to OS boot loader)loader)

3.3. OS Loader (OS specific bootstrap sequence to detect OS Loader (OS specific bootstrap sequence to detect critical hardware present, preload drivers, registry and critical hardware present, preload drivers, registry and then pass control to initial them)then pass control to initial them)

4.4. Kernel Phase (Windows NT family initialization of core Kernel Phase (Windows NT family initialization of core drivers and services with a pre-determined outcome)drivers and services with a pre-determined outcome)

5.5. GUI LogonGUI Logon

6.6. Infrastructure CompletionInfrastructure Completion


Is BSOD Really Death with SBS?Is BSOD Really Death with SBS?

MysteryMystery

Many BSOD or boot failures cannot be Many BSOD or boot failures cannot be repaired on SBS with damaging AD repaired on SBS with damaging AD configuration? configuration?

BustedBusted

It’s true, some repairs can damage AD or It’s true, some repairs can damage AD or Application configurations. Application configurations.

This doesn’t mean you can’t repair, it This doesn’t mean you can’t repair, it means it’s a two step repair:means it’s a two step repair:

Repair to regain configuration boot successRepair to regain configuration boot success

Restore System State conditionRestore System State condition

SBS 200x AD/Exch 200x

Win XP/200x






SBS Domain Rises from the SBS Domain Rises from the Ashes?Ashes? MysteryMystery

It really can’t be possible to repair a non-bootable It really can’t be possible to repair a non-bootable SBS server without reconstructing it from scratch SBS server without reconstructing it from scratch or having a System State backup?or having a System State backup?

BustedBustedYou really can repair components and applications You really can repair components and applications individually on an SBS.individually on an SBS.

You do need to learn the interrelationship of SQL, You do need to learn the interrelationship of SQL, Exchange, IIS, Sharepoint and ADExchange, IIS, Sharepoint and AD

Recovery of the configuration and data would Recovery of the configuration and data would regardless allow a rebuild with “Swing”.regardless allow a rebuild with “Swing”.

SBS 200x Exch 200xWin 200x

OEM Install Tools Required?OEM Install Tools Required?MysteryMystery

Must you use OEM tools to reinstall an SBS for the Must you use OEM tools to reinstall an SBS for the server to find text mode setup boot drivers?server to find text mode setup boot drivers?

BustedBustedNo. No.

Windows can restore any configuration if you have Windows can restore any configuration if you have the drivers for the boot devices. The tools the drivers for the boot devices. The tools provided by OEMs are generally intended to provided by OEMs are generally intended to automate installation sequences that can be automate installation sequences that can be performed without special tools or media.performed without special tools or media.


Product Activation Product Activation MysteryMystery

Does Product License Activation prevent you from Does Product License Activation prevent you from replacing a SBS server/motherboard?replacing a SBS server/motherboard?

BustedBustedNo. No.

OEM vendors can/may allow replacement of OEM vendors can/may allow replacement of hardware under warranty. Non-OEM products can hardware under warranty. Non-OEM products can be reactivated if the use conforms to product be reactivated if the use conforms to product licensing (replacing previous server).licensing (replacing previous server).







Store Mount Failed After DRStore Mount Failed After DR MysteryMystery

An Exchange Information Store won’t An Exchange Information Store won’t mount, but does it have data corruption? mount, but does it have data corruption?

BustedBusted

Maybe? It could be corruption, but it could Maybe? It could be corruption, but it could also be one of many different issues also be one of many different issues recently changed:recently changed:

Anti-Virus scanner acting upon Exchange Anti-Virus scanner acting upon Exchange system filessystem files

Incorrect Permissions on the Exchange foldersIncorrect Permissions on the Exchange folders

Transfer of Information Store from higher level Transfer of Information Store from higher level SPSPSBS 200x Exch 200xWin 200x

Microsoft Exchange Data RepairMicrosoft Exchange Data Repair

MysteryMysteryIs there is a predictable path to recovery for Is there is a predictable path to recovery for Exchange Databases, or is it not worth attempting Exchange Databases, or is it not worth attempting because there will be data loss regardless? because there will be data loss regardless?

BustedBustedMS KBs reinforce dubious assumptions of “lossy” MS KBs reinforce dubious assumptions of “lossy” repairsrepairs

For a single server Exchange Organization, it isn’t For a single server Exchange Organization, it isn’t unusual that recovery to a recent backup, or “hard unusual that recovery to a recent backup, or “hard repair” to a recent condition is quite acceptablerepair” to a recent condition is quite acceptable

First, try creating a new empty storeFirst, try creating a new empty store

Repair a copy of the original databaseRepair a copy of the original database


Microsoft Exchange Log Files Microsoft Exchange Log Files Crisis?Crisis? MysteryMystery

Is it critical to have all the Exchange Log files and Is it critical to have all the Exchange Log files and Database files in order to recover the Information Database files in order to recover the Information Store intact?Store intact?

BustedBustedNo. Exchange Logs in a relatively small scale No. Exchange Logs in a relatively small scale environment are posted “immediately”, therefore environment are posted “immediately”, therefore they represent history, not uncommitted they represent history, not uncommitted information. You can recovery without logs.information. You can recovery without logs.







SBS Backup Skips Over Files?SBS Backup Skips Over Files? MysteryMystery

MS Backup isn’t a complete System State MS Backup isn’t a complete System State recovery because it skips critical system files?recovery because it skips critical system files?

BustedBustedNo. NT Backup (aka: SBS Backup) skips files that No. NT Backup (aka: SBS Backup) skips files that are not required because they are generated are not required because they are generated dynamically, or not essential to recovery.dynamically, or not essential to recovery.


Volume Shadow Copy Required?Volume Shadow Copy Required?

MysteryMystery

MS Backup of Exchange isn’t complete MS Backup of Exchange isn’t complete because it doesn’t use Volume Shadow because it doesn’t use Volume Shadow Copy?Copy?

BustedBusted

No. Volume Shadow Copy is an alternative No. Volume Shadow Copy is an alternative to the method of backup that was used to the method of backup that was used historically with Exchange. If VSS can’t historically with Exchange. If VSS can’t support the circumstance, the traditional support the circumstance, the traditional method is used. method is used.

SBS 2003 Win 2003

SBS Backup: SQL Aware or Not?SBS Backup: SQL Aware or Not? MysteryMystery

MS backup of SQL databases are not possible MS backup of SQL databases are not possible because there’s no SQL agent?because there’s no SQL agent?

BustedBusted

No. SBS 2003 can perform a VSS backup which No. SBS 2003 can perform a VSS backup which provides backup “to that point in time” when the provides backup “to that point in time” when the database recovery model is set to “simple”. database recovery model is set to “simple”.

More info: More info: MS KB 828481

However, transaction level recovery However, transaction level recovery not included in in simple modelsimple model

Optional: Use Enterprise Manager first to backup Optional: Use Enterprise Manager first to backup to diskto disk

SBS 200x SQL 200xWin 200x

http://support.microsoft.com/kb/828481/en-us

SBS Disaster Recovery: MagicSBS Disaster Recovery: Magic

Boot on totally different hardwareBoot on totally different hardware

Repair Corrupted IIS or Website ProblemsRepair Corrupted IIS or Website Problems

Recover AD from dead Domain ControllerRecover AD from dead Domain Controller

Fix Administrator Lock-OutFix Administrator Lock-Out

Fix a Replica DC that is not functionalFix a Replica DC that is not functional

How to Prepare for Recovery in How to Prepare for Recovery in the Future Without Identical the Future Without Identical Hardware?Hardware? Preinstall a bootable PCI drive controller driverPreinstall a bootable PCI drive controller driver

You will always have that controller as a boot You will always have that controller as a boot optionoption

Crisis Resolution MagicCrisis Resolution Magic““Lift and Drop” of a complete system drive (aka: Lift and Drop” of a complete system drive (aka: the entire C: drive contents as is) onto totally the entire C: drive contents as is) onto totally different hardware can be handled easilydifferent hardware can be handled easily

A trivial bit of planned preparation requiring less A trivial bit of planned preparation requiring less than 15 minute preparation, perhaps an hour to than 15 minute preparation, perhaps an hour to implement as a recovery if needed. implement as a recovery if needed.

SBS 200x Win NTWin XP/200x

Website & Microsoft Exchange Website & Microsoft Exchange Doesn’t Work, and yet I can’t Doesn’t Work, and yet I can’t Imagine Reinstalling IIS on an SBS Imagine Reinstalling IIS on an SBS server ?server ?

And yet this is not only possible, it’s actually quite And yet this is not only possible, it’s actually quite an interesting project if you have two hours to an interesting project if you have two hours to spare. But as often as not, it’s not even required.spare. But as often as not, it’s not even required.

Crisis Resolution MagicCrisis Resolution MagicThe biggest challenge is being able to tell when The biggest challenge is being able to tell when it’s needed.it’s needed.

Uninstall Exchange and IISUninstall Exchange and IIS

Reinstall IIS, then ExchangeReinstall IIS, then Exchange

Rerun SBS Setup to install Server ToolsRerun SBS Setup to install Server Tools

Include Sharepoint in reinstallInclude Sharepoint in reinstall


Fix Frustrating Conditions with Fix Frustrating Conditions with Hung Server or Administrator Hung Server or Administrator Lock-outLock-out

Simple changes to Group Policies, Security Simple changes to Group Policies, Security Groups, or a folder permission can break Groups, or a folder permission can break or or correctcorrect some shocking or odd scenarios that look some shocking or odd scenarios that look like a disasterlike a disaster

Crisis Resolution Magic:Crisis Resolution Magic: Don’t abandon it…fix it!!Don’t abandon it…fix it!!

Deny the Administrator from log on locallyDeny the Administrator from log on locally

Access denied to the GP Management ConsoleAccess denied to the GP Management Console

Access denied to the SysvolAccess denied to the Sysvol

Server hangs on “applying Personal Settings”Server hangs on “applying Personal Settings”

Server hangs on “applying Network Settings”Server hangs on “applying Network Settings”

Server hangs on “Welcome to Windows” Server hangs on “Welcome to Windows”

SBS 200x Win 200x

Replica DC didn’t Maintain Replica DC didn’t Maintain Network as Expected, Domain Network as Expected, Domain Down Still?Down Still?Added a replica Domain Controller to my SBS Added a replica Domain Controller to my SBS

network, but when my SBS went offline, everything network, but when my SBS went offline, everything still didn’t work despite that other DC. still didn’t work despite that other DC.

Crisis Resolution MagicCrisis Resolution MagicDNSDNS

FSMO RolesFSMO Roles

Global CatalogGlobal Catalog

ForwardersForwarders

UNC References, particularly in the Netlogon and UNC References, particularly in the Netlogon and Group PoliciesGroup Policies

Sysvol never replicated due to non-functional Sysvol never replicated due to non-functional replication, prior Journal Wrap on the SBSreplication, prior Journal Wrap on the SBS

SBS 200x Win 200x

Replica DC but it has no Sysvol Replica DC but it has no Sysvol (therefore non-functional), so does (therefore non-functional), so does That Mean a Scratch Rebuild is That Mean a Scratch Rebuild is Only Option or Could that be Fixed? Only Option or Could that be Fixed?

Actually, there’s really no reason to rebuild from Actually, there’s really no reason to rebuild from scratch if you have the NTDS folder itself intact, scratch if you have the NTDS folder itself intact, even if the Sysvol is missing. even if the Sysvol is missing.

Crisis Resolution MagicCrisis Resolution Magic

Rebuilding Sysvol is definitely a better alternative Rebuilding Sysvol is definitely a better alternative to rebuilding domain from scratch.to rebuilding domain from scratch.

DcGPOfix /target:bothDcGPOfix /target:both

Few SBS domains have customized Group Policies Few SBS domains have customized Group Policies so reinstall SBS setup to restore the policies. so reinstall SBS setup to restore the policies.

SBS 200x Win 200x

““Graveyard” Swing Migration Graveyard” Swing Migration Disaster Recovery with a Disaster Recovery with a Server That Won’t Even Boot?Server That Won’t Even Boot?

You can recover Active Directory from a Domain You can recover Active Directory from a Domain Controller, even if it has a severely damaged Controller, even if it has a severely damaged software or system registry and therefore won’t software or system registry and therefore won’t boot, if only to save the AD and build a boot, if only to save the AD and build a replacement server in the same domain.replacement server in the same domain.

Crisis Resolution MagicCrisis Resolution MagicRestore or in-place upgrade repair the DC.Restore or in-place upgrade repair the DC.

Even if the applications are broken, you can make Even if the applications are broken, you can make the DC operational…then Swing!the DC operational…then Swing!

Reconstruct a replacement serverReconstruct a replacement server


Jeff Middleton SBS-Jeff Middleton SBS-MVPMVP

[email protected]@SBSmigration.com m

www.SBSmigration.com

Wayne Small SBS-Wayne Small SBS-MVPMVP

[email protected]@SBSfaq.comwww.SBSfaq.com



http://www.sbsfaq.com/

Resources for this session topicResources for this session topic

Includes Chapters Includes Chapters

by Jeff Middleton: by Jeff Middleton: Swing Migration Swing Migration

Disaster Disaster Recovery Recovery

Other topics by Other topics by 13 additional 13 additional authors authors

ResourcesResourcesTechnical Chats and Webcastshttp://www.microsoft.com/communities/chats/default.mspx http://www.microsoft.com/usa/webcasts/default.asp

Microsoft Learning and Certificationhttp://www.microsoft.com/learning/default.mspx

MSDN & TechNet http://microsoft.com/msdnhttp://microsoft.com/technet

Virtual Labshttp://www.microsoft.com/technet/traincert/virtuallab/rms.mspx

Newsgroupshttp://communities2.microsoft.com/communities/newsgroups/en-us/default.aspx

Technical Community Siteshttp://www.microsoft.com/communities/default.mspx

User Groupshttp://www.microsoft.com/communities/usergroups/default.mspx

http://www.microsoft.com/communities/chats/default.mspx

http://www.microsoft.com/usa/webcasts/default.asp

http://www.microsoft.com/learning/default.mspx

http://microsoft.com/msdn

http://microsoft.com/technet

http://www.microsoft.com/technet/traincert/virtuallab/rms.mspx

http://communities2.microsoft.com/communities/newsgroups/en-us/default.aspx

http://communities2.microsoft.com/communities/newsgroups/en-us/default.aspx

http://www.microsoft.com/communities/default.mspx

http://www.microsoft.com/communities/usergroups/default.mspx

SBS 2003 R2 Disaster Recovery

Documents