Configuring Security for Backup and Restore Operations

Previous page
Table of content
Next page

As mentioned previously, you must be a local administrator or backup operator to perform backups and restores on local computers. Likewise, if you're an administrator or backup operator on a domain controller, you can back up any file and folder locally on any computer in the domain. However, if you aren't an administrator or backup operator, you must be the owner of the files and folders that you want to back up, or you must have NTFS permissions for the files and folders you want to back up. One last method worth mentioning is to grant the person who performs backups or restores the Backup Files and Directories right.

Tape Security and Access

By default, the Windows Server 2003 Backup application provides no restrictions to the backup sets or files. You can restrict access to a backup file by selecting Allow Only the Owner and the Administrator Access to the Backup Data in the Backup Job Information dialog box. If you select this option, only an administrator or the person who created the backup file will be able to restore the files and folders.

NTFS File Permissions

NTFS file permissions are written to tape along with the files. They're primarily used for restoring and do not restrict access to the files on the tape. The computer name and username information are stored in the tape header. If you enable the Allow Only the Owner and the Administrator Access to the Backup Data check box, the tape is designated as a secure tape. Only the creator, owner, backup operator, administrator, and users with the Backup Files and Directories right are allowed to read, write, and access the tape.

If you do not use data encryption, the tapes are not truly secure and should be physically secured in an offsite location if you need to protect sensitive data.

Configuring Advanced Restore Options

To configure advanced restore options, perform the following steps:

  1. Run Backup.

  2. Click the Advanced Mode link.

  3. Click the Restore and Manage Media tab.

  4. Click the Start Restore button.

  5. On the Confirm Restore dialog box, click Advanced.

  6. Set the advanced restore option you want and then click the OK button as shown in Figure 5.9.

    Figure 5.9. Advanced Restore Options dialog box.

    graphics/05fig09.gif

The Advanced Restore options are listed along with a brief description of what each option does in Table 5.1.

Table 5.1. Advanced Restore Options

Item

Description

Restore Security

Available only on NTFS volumes , this option restores files and folders security settings including permissions, audit entries, and ownership.

Restore Junction Points

Restores junction points and their data on your hard drive. If you're restoring mounted drive data, you much must check the restore points check box in order for your mounted data to be backed up.

Preserve Existing Mount Points

Prevents the restored data from overwriting mount points on the volume you're restoring data to.


Previous page
Table of content
Next page
MCSA.MCSE Managing and Maintaining a Windows Server 2003 Environment Exam Cram 2
MCSA/MCSE Managing and Maintaining a Windows Server 2003 Environment Exam Cram 2 (Exam Cram 70-292)
ISBN: 0789730111
EAN: 2147483647
Year: 2006
Pages: 132
Authors: Bruce Parrish, Kirk Hausman, Ed Tittel
BUY ON AMAZON
Image Processing with LabVIEW and IMAQ Vision
Introducing Microsoft ASP.NET AJAX (Pro - Developer)
Logistics and Retail Management: Emerging Issues and New Challenges in the Retail Supply Chain
Ruby Cookbook (Cookbooks (OReilly))
Microsoft VBScript Professional Projects
VBScript in a Nutshell, 2nd Edition
flylib.com © 2008-2017.
If you may any questions please contact us: flylib@qtcs.net
Privacy policy