Solved

Consequences of Restoring System State from backup

Posted on 2008-10-07
6
1,538 Views
Last Modified: 2012-05-05
I cannot access Active Directory on our SBS2003 domain controller and after some research it appears as though the correct course of action is to restore the system state data from a backup.

What are the side effects of restoring the system state data from a backup from last Friday? Will it effect Exchange anyway?

Any other precautions in doing so? (I've never had to do this before)

On a sidenote this problem seems to be a continuation of a problem I reported yesterday with the SysVol folders permissions.

http://www.experts-exchange.com/Networking/Protocols/DNS/Q_23791187.html

Any help is greatly appreciated as we are dead in the water.
0
Comment
Question by:waltb123
  • 4
  • 2
6 Comments
 
LVL 24

Expert Comment

by:ryansoto
ID: 22660210
What exactly is the ongoing issue at this point?
Reading your previous post it looks you can try to rebuild the sysvol and netlogon folders
http://support.microsoft.com/default.aspx?scid=kb%3Ben-us%3B315457
0
 

Author Comment

by:waltb123
ID: 22660277
The issue is that I cannot load AD on the DC at all. One of the side effects of that issue is that everyone is getting authentication errors while trying to access applications such as CRM that are on another server.

I'm reading your link now.

I've found information I think may be related to my problem, regarding FRS tombstones preventing a DC from becoming a DC. I've just tried this below

1. Stop the File Replication service on the domain controller.
2. Start Registry Editor (Regedt32.exe).
3. Locate and then click the BurFlags value under the following key in the registry:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\NtFrs\Parameters\Backup/Restore\Process at Startup
4. On the Edit menu, click DWORD, click Hex, type D4, and then click OK.
5. Quit Registry Editor.
6. Move data out of the PreExisting folder.
7. Restart the File Replication Service.

However I still cannot access AD. I think a reboot may be in order and will do so shortly.
0
 
LVL 24

Expert Comment

by:ryansoto
ID: 22660330
Yup that does work well, reboot and post back
0
Complete VMware vSphere® ESX(i) & Hyper-V Backup

Capture your entire system, including the host, with patented disk imaging integrated with VMware VADP / Microsoft VSS and RCT. RTOs is as low as 15 seconds with Acronis Active Restore™. You can enjoy unlimited P2V/V2V migrations from any source (even from a different hypervisor)

 

Author Comment

by:waltb123
ID: 22660370
Now that I'm thinking about it, I think I know what may have caused this problem in the first place (but I still dont know how to fix for sure).  Nearly a year ago our BDC crashed and burned.

The server itself was replaced. I never did promote the new fileserver to a BDC and I've seen errors in the event viewer regarding FRS trying to replicate with the now non-existent BDC. I removed every trace of the old server from AD and DNS but apparently this isnt where FRS info is stored because I still saw errors trying to replicate with the old server.

I'm going to open a new question in regards to how to properly remove the old BDC from FRS.
0
 

Author Comment

by:waltb123
ID: 22660385
reboot in 30 minutes, I'll be back with an update.
0
 

Accepted Solution

by:
waltb123 earned 0 total points
ID: 22660830
Reboot wasnt necessary. All is ok now after the above mentioned procedure and some help with how to remove a failed BDC from AD via this link.

http://www.experts-exchange.com/OS/Microsoft_Operating_Systems/Server/2003_Server/Q_23794168.html

0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Introduction You may have a need to setup a group of users to allow local administrative access on workstations.  In a domain environment this can easily be achieved with Restricted Groups and Group Policies. This article will demonstrate how to…
In this article, we will see the basic design consideration while designing a Multi-tenant web application in a simple manner. Though, many frameworks are available in the market to develop a multi - tenant application, but do they provide data, cod…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…

867 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now