Mark
asked on
How to grant security permission on backup archive
I have a big problem I need to figure out by tomorrow. I have to restore a user's desktop files. Should be no problem because I have a backup (Acronis). However, the user's workstation was part of a SBS 2008 domain and the actual desktop files were located on the SBS Server at \Users\RedirectedFolders\u sername\De sktop.
Using the Acronis 'mount image' function, I was able to mount the backup as drive I: However, when I navigate to I:\Users\RedirectedFolders , I get the error "You have been denied permission to access this folder." (see attached image, at left). I am advised to "use the security tab", but when I do, I do not have permission to Add security settings.
I assume this is a problem because the original Domain administrator and original domain user no longer exist.
How can I get access to this folder? Urgent! Help!
mountedRestoreImage.jpg
Using the Acronis 'mount image' function, I was able to mount the backup as drive I: However, when I navigate to I:\Users\RedirectedFolders
I assume this is a problem because the original Domain administrator and original domain user no longer exist.
How can I get access to this folder? Urgent! Help!
mountedRestoreImage.jpg
ASKER
NewVillageIT:
1.Open Windows Explorer, and then locate the file or folder you want to take ownership of.
2.Right-click the file or folder, click Properties, and then click the Security tab.
3.Click Advanced, and then click the Owner tab.
However, my 'Advanced' does not have an 'Owner' tab. (see image) One wrinkle might be that this is a backup archive mounted as a drive, so it is certainly read-only.
advanced.jpg
Did you try taking ownership of the folder?Never tried that before. How? I followed these instructions:
1.Open Windows Explorer, and then locate the file or folder you want to take ownership of.
2.Right-click the file or folder, click Properties, and then click the Security tab.
3.Click Advanced, and then click the Owner tab.
However, my 'Advanced' does not have an 'Owner' tab. (see image) One wrinkle might be that this is a backup archive mounted as a drive, so it is certainly read-only.
try adding the new adminI'll try booting as one of the listed computer admins rather than trying as the domain administrator
advanced.jpg
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
NewVillageIT:
I tried booting as the machine Administrator. Still no go. Odd thing is that in the Security > Advanced tab it has all the permission boxes checked including full control and take ownership, yet all the checkboxes are grayed out and I can't do anything at all. See image:
permissions.png
You have to do it at the source server folder. Not at the mounted drive.The source server no longer exists. That was supposed to be the point of backups.
I tried booting as the machine Administrator. Still no go. Odd thing is that in the Security > Advanced tab it has all the permission boxes checked including full control and take ownership, yet all the checkboxes are grayed out and I can't do anything at all. See image:
permissions.png
Hi jmark... Just wondering if you got this working... If not, try opening a CMD prompt by right-clicking and choosing Run As Administrator. In the prompt, if you can see the I: drive, try to copy something from it.
ASKER
NewVillageIT:
I was, in fact, able to shutdown all other workstations on the LAN, resurrect the old domain controller, re-add the user's workstation to the old domain controller and get to the needed files via \\domainserver\Users\Redir ectedFolde rs\usernam e.
[beginRant]
It's been a longstanding, forehead-slapping irritation of mine that Windows has no "Super User". Doubtless that's what makes it so easy for hackers to get to any OS files they want. No problem for hackers, big headaches for legitimate users. Unix's root user can get to any file, period, and no one can get to root-owned files unless specifically (stupidly) given permission; which is why Linux and Mac OS are so tough to hack.
Once that old domain controller is crushed into scrap metal my years of archived backups become suddenly useless -- except the Acronis software will actually let me image-restore the SBS 2008 onto completely different hardware some time in the future should I need to create a "Jurassic Park" machine from the past; a bit much of an effort if I just need the odd file or two. Again, by contrast, decades old tar backups can be read forever without having to genetically resurrect the machine that created them!
[endRant]
try opening a CMD promptDidn't try that, but I would suspect the Microsoft security "gurus" would have plugged that particular hole long ago.
I was, in fact, able to shutdown all other workstations on the LAN, resurrect the old domain controller, re-add the user's workstation to the old domain controller and get to the needed files via \\domainserver\Users\Redir
[beginRant]
It's been a longstanding, forehead-slapping irritation of mine that Windows has no "Super User". Doubtless that's what makes it so easy for hackers to get to any OS files they want. No problem for hackers, big headaches for legitimate users. Unix's root user can get to any file, period, and no one can get to root-owned files unless specifically (stupidly) given permission; which is why Linux and Mac OS are so tough to hack.
Once that old domain controller is crushed into scrap metal my years of archived backups become suddenly useless -- except the Acronis software will actually let me image-restore the SBS 2008 onto completely different hardware some time in the future should I need to create a "Jurassic Park" machine from the past; a bit much of an effort if I just need the odd file or two. Again, by contrast, decades old tar backups can be read forever without having to genetically resurrect the machine that created them!
[endRant]
Maybe before taking ownership, try adding the new admin. But, I think you already tried that.