Solved

Complete Windows 2008 domain w/o Exchange Reinstall

Posted on 2013-06-13
3
332 Views
Last Modified: 2013-06-17
I'm working with a small windows 2008 32 bit domain with four workstations. The network has been compromised by a hacker.  I've manually copied all user docs from the server to an external USB drive along with their one database app and I've screen printed all settings,

We just installed a new TZ205 firewall.

My plan is to reformat the server and all four workstations, install Windows 2008 R2/64 on the server and XP back on the 4 pc's, manually recreate the user accounts, create their login scripts, shared folders, copy their docs back in and get them clean again. I will be installing SEP 12.1.2 and it's manager.

The workstations all use Outlook with PST files and get mail from pop3 accounts on the web.

I have the following questions:

1. What's the best and surest way to backup everything (PST/NK2/Contacts) in Outlook and perform a restore on an XP box?

2. Since AD has been hacked, I'm not sure what is clean so I want to totally reinstall the server. Any suggestions other than what I've already stated to make the restore clean and quick?  I have a Backup Exec backup, but I'm sure some of it has been hacked and I'm not sure what can be restored safely.
0
Comment
Question by:Tony Giangreco
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 22

Accepted Solution

by:
Larry Struckmeyer MVP earned 500 total points
ID: 39246603
I have the following questions:

1. What's the best and surest way to backup everything (PST/NK2/Contacts) in Outlook and perform a restore on an XP box?

Based on what you posted you cannot do a restore on an XP box.  You will have to reinstall unless you have known good backups.  A pst file is just that.  So long as you can safeguard those you can copy them back to a system running Outlook and point OL to the .pst and it will be able to load the mail box.



2. Since AD has been hacked, I'm not sure what is clean so I want to totally reinstall the server. Any suggestions other than what I've already stated to make the restore clean and quick?  I have a Backup Exec backup, but I'm sure some of it has been hacked and I'm not sure what can be restored safely.

Reinstall and restore are different.  When you restore you create a new domain and all new sids.  Any user or computer will be "different" than before, so you need to safeguard the data and put it back onto the new server into a logical folder set and assign permissions and security in the same way as before.
0
 
LVL 25

Author Comment

by:Tony Giangreco
ID: 39246617
2. Since AD has been hacked, I'm not sure what is clean so I want to totally reinstall the server. Any suggestions other than what I've already stated to make the restore clean and quick?  I have a Backup Exec backup, but I'm sure some of it has been hacked and I'm not sure what can be restored safely.

Reinstall and restore are different.  When you restore you create a new domain and all new sids.  Any user or computer will be "different" than before, so you need to safeguard the data and put it back onto the new server into a logical folder set and assign permissions and security in the same way as before.

I plan to run the 2008 r1 install by deleting the partitions a d running a clean install of 2008 r2. Then isetting up ad and dns, user accounts and copying data back. Can you elaborate on how I should do differently?
0
 
LVL 25

Author Comment

by:Tony Giangreco
ID: 39246618
I meant r2 instead of r1
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Active Directory security has been a hot topic of late, and for good reason. With 90% of the world’s organization using this system to manage access to all parts of their IT infrastructure, knowing how to protect against threats and keep vulnerabil…
I was prompted to write this article after the recent World-Wide Ransomware outbreak. For years now, System Administrators around the world have used the excuse of "Waiting a Bit" before applying Security Patch Updates. This type of reasoning to me …
This tutorial will walk an individual through the process of transferring the five major, necessary Active Directory Roles, commonly referred to as the FSMO roles from a Windows Server 2008 domain controller to a Windows Server 2012 domain controlle…
Microsoft Active Directory, the widely used IT infrastructure, is known for its high risk of credential theft. The best way to test your Active Directory’s vulnerabilities to pass-the-ticket, pass-the-hash, privilege escalation, and malware attacks …

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question