Go Premium for a chance to win a PS4. Enter to Win

x
?
Solved

Complete Windows 2008 domain w/o Exchange Reinstall

Posted on 2013-06-13
3
Medium Priority
?
335 Views
Last Modified: 2013-06-17
I'm working with a small windows 2008 32 bit domain with four workstations. The network has been compromised by a hacker.  I've manually copied all user docs from the server to an external USB drive along with their one database app and I've screen printed all settings,

We just installed a new TZ205 firewall.

My plan is to reformat the server and all four workstations, install Windows 2008 R2/64 on the server and XP back on the 4 pc's, manually recreate the user accounts, create their login scripts, shared folders, copy their docs back in and get them clean again. I will be installing SEP 12.1.2 and it's manager.

The workstations all use Outlook with PST files and get mail from pop3 accounts on the web.

I have the following questions:

1. What's the best and surest way to backup everything (PST/NK2/Contacts) in Outlook and perform a restore on an XP box?

2. Since AD has been hacked, I'm not sure what is clean so I want to totally reinstall the server. Any suggestions other than what I've already stated to make the restore clean and quick?  I have a Backup Exec backup, but I'm sure some of it has been hacked and I'm not sure what can be restored safely.
0
Comment
Question by:Tony Giangreco
  • 2
3 Comments
 
LVL 22

Accepted Solution

by:
Larry Struckmeyer MVP earned 2000 total points
ID: 39246603
I have the following questions:

1. What's the best and surest way to backup everything (PST/NK2/Contacts) in Outlook and perform a restore on an XP box?

Based on what you posted you cannot do a restore on an XP box.  You will have to reinstall unless you have known good backups.  A pst file is just that.  So long as you can safeguard those you can copy them back to a system running Outlook and point OL to the .pst and it will be able to load the mail box.



2. Since AD has been hacked, I'm not sure what is clean so I want to totally reinstall the server. Any suggestions other than what I've already stated to make the restore clean and quick?  I have a Backup Exec backup, but I'm sure some of it has been hacked and I'm not sure what can be restored safely.

Reinstall and restore are different.  When you restore you create a new domain and all new sids.  Any user or computer will be "different" than before, so you need to safeguard the data and put it back onto the new server into a logical folder set and assign permissions and security in the same way as before.
0
 
LVL 25

Author Comment

by:Tony Giangreco
ID: 39246617
2. Since AD has been hacked, I'm not sure what is clean so I want to totally reinstall the server. Any suggestions other than what I've already stated to make the restore clean and quick?  I have a Backup Exec backup, but I'm sure some of it has been hacked and I'm not sure what can be restored safely.

Reinstall and restore are different.  When you restore you create a new domain and all new sids.  Any user or computer will be "different" than before, so you need to safeguard the data and put it back onto the new server into a logical folder set and assign permissions and security in the same way as before.

I plan to run the 2008 r1 install by deleting the partitions a d running a clean install of 2008 r2. Then isetting up ad and dns, user accounts and copying data back. Can you elaborate on how I should do differently?
0
 
LVL 25

Author Comment

by:Tony Giangreco
ID: 39246618
I meant r2 instead of r1
0

Featured Post

Veeam Task Manager for Hyper-V

Task Manager for Hyper-V provides critical information that allows you to monitor Hyper-V performance by displaying real-time views of CPU and memory at the individual VM-level, so you can quickly identify which VMs are using host resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Microsoft Office 365 is a subscriptions based service which includes services like Exchange Online and Skype for business Online. These services integrate with Microsoft's online version of Active Directory called Azure Active Directory.
In the absence of a fully-fledged GPO Management product like AGPM, the script in this article will provide you with a simple way to watch the domain (or a select OU) for GPOs changes and automatically take backups when policies are added, removed o…
This video shows how to use Hyena, from SystemTools Software, to update 100 user accounts from an external text file. View in 1080p for best video quality.
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…

877 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question