Tag Archives: backup

Azure Backup to Protect your Data from Disaster – Part 2

In my previous post I explain what Azure backup is and its features. If you not read it yes you can find it here. In this post I am going to explain how to configure azure backup and how to use it to back up your data.

Create Azure backup vault

1)    Log in to the Azure Portal
2)    Click on +New and then in search type “backup” and press enter

abk1

3)    From the list click on Azure Backup

abk2

4)    Then it will open the feature page. It will give you brief description about azure backup feature. Click on “create

abk3

5)    Then it will open up the azure management portal and give you option to create the backup vault. Type the name for the vault and also select the region you need. Then click create vault

abk4

6)    Then it will create the vault

abk5

7)    Now we need to download azure vault credential file. On-premise backup agent need to register with backup vault in order to backup data. Azure vault credential file is a certificate generate by the portal for each backup vault. Then the public key of the file will upload to the access control service. This file will use during the initial agent registration process. This credential file only valid for 48 hours. So if you need to register another machine you need to download the latest credential file from portal. Even someone else manage to get the keys it will prevent them using it to connect the backup vault. To download, click on the backup vault and then dashboard.

abk6

8)    Next is to download the backup agents. It is can find on the same page.

abk7

Backup On-Premises Data

Now we have the backup vault created in cloud and next step is to start the agent install and register process.

1)    Log in to the on-premises server or pc you like to backup as administrator
2)    Download the agent and latest vault credential file as explain on previous
3)    For demo I am using an on-premises DC server which running on windows server 2016 TP4. Double click on MARSAgentInstaller.exe to start the agent install
4)    In first window select the folder path for installation and cache. You can change the paths as you like.

abk8

5)    In next window you can define proxy settings if you behind proxy server. Click next to continue

abk9

6)    In next window it ask to allow windows update to update agent if any update available. Click on next to continue after selection

abk10

7)    In next window click on install to start the agent installation

abk11

8)    After install, need to start the registration, click on “Proceed to registration

abk12

9)    In next window it ask to brows for the vault credential file which is downloaded from the portal. Then click next to proceed

abk13

10)    In next screen you can define a passphrase to encrypt and decrypt backup data. You must save this information as, if you do not have this info you will not be able to use backup data in recovery process. Then click on finish to complete the register process.

abk14

11)    Once it’s done we can start to setup backup jobs by launching agent.

abk15

Azure Backup Job configuration

1)    To configure backup job, double click on Microsoft Azure Backup icon in on-premises server

abk16

2)    After open the console, you can start to configure schedule backup using “Scheduled Backup

abk17

3)    Then it start the console, click next to continue

abk18

4)    In next windows can select the data you need to backup, then click next to proceed

abk19

5)    Here we can define the schedule for the backup, click next to proceed

abk20

6)    In next window we can define the data retention policy. You can keep data up to 99 years. Once done click on next to proceed

abk21

7)    Next step is to define the initial backup settings. You can either do it via internet or offline seeding.

abk22

8)    Next it will give the confirmation about backup and click on finish to exit

abk23

Now it’s all done, let’s check azure backup portal to see the registration status.
Under the registered item now we can see the new server we added and its status.

abk24

Under the protected items can see the status of the protection, how many recovery points etc.

abk25

Recover an Item

Let’s see how to recover a file easily.

1)    Launch the azure backup console in local computer
2)    Click on Recover Data Option
3)    In wizard you need to select where the backup was generated. For demo I am trying to restore to same server.

abk26

4)    Then in next window can select recovery mode. Then click next to proceed

abk27

5)    Next we need to select the volume, date, time to recover from

abk28

6)    Then in next window select the file or folder to recover

abk29

7)    Next we can define if its need to restore to original or alternative location. Also what to do if the item with same name exist in the location.

abk30

8)    Then click on “recover” to get the file

abk31

9)    As we can see its recovered the file successfully at the end.

abk32

Hope this article help you to understand the azure backup in operations.

If you have any questions feel free to contact me on rebeladm@live.com

Azure Backup to Protect your Data from Disaster – Part 1

Data is the value for any organization operations, so it’s important to make sure organization have access to its data in any time. Backup of valued data will ensure seamless access to data in a disaster. Businesses uses different type of backup technologies, tools to backup data. It can be traditional tape backups, on-premises backup, off-shore backup etc. each of these technologies, tools got their own characteristics.

Azure Backup is a solution where you can bring your backups to cloud. Let’s see why it’s different from other solutions.

azurebackupintronew

Zero Capital investment – Disaster recovery solutions are costly. You need to buy additional storages, spaces in remote data centers, software licenses, support contracts etc. when all these adds up its not cheap. But with azure backup you can start the backup without any of the above concerns.   All you need to do is enable the service in azure portal. Then in next minute you can start to back up your data in to the cloud.

Minimum maintenance cost – Maintaining disaster recovery solution is not easy either. When the data grows you need to plan for the expanding your backup infrastructure as well. Also need to consider about software upgrades, staff training etc. But if you use azure backup, Microsoft taking care of all these maintenance problems for you.

Protect Data from anywhere – your data can be in different formats and in different geographical locations. Also some data may in cloud. Azure backup can protect your data from anywhere and all you need is internet access. In disaster it will be available to you from anywhere as well. 

Replacement for Tape – even tapes are old school backup type still organizations are using it for long-term retention. With azure backup you can keep your data up to 99 years. Also it’s available to you in low cost and faster recovery than tapes.

Secure – When people talk about the cloud service a common question you get is how secure it is. With Azure backup, the data will be encrypted before it leaves your infrastructure. Then it will be deliver via secure connection and will be store in azure datacenters as encrypted data.

Reliable – Azure backup will store 3 copies of your data in azure datacenter and in additional you can save copies in remote datacenters in different geographical locations.

Throttling – when you backup data over internet one of the problem people face is bandwidth. With bandwidth throttling we can control the impact of backup jobs to company uplinks. Ideally backup jobs can use the full benefit of bandwidth in off-peak times.

Compression – Data will be compressed before it upload in to azure. So it will use less bandwidth and less storage.

Advanced Workload Protection– Azure backup can integrate with SCDPM (System Center Data Protection Manager) and can use to protect enterprise workload such as SharePoint, exchange, SQL servers, Hyper-V VM. It also gives Granular restore capability such as mailbox recovery for Exchange, DB level recovery for SQL, and ILR for SharePoint. DPM works seamlessly with the Hyper-V Volume Shadow Copy Services (VSS) writer to ensure that consistent versions of virtual machines are captured and protected without affecting virtual machine access.

Offline Seeding – The initial backup for large servers over internet is pain. Azure backup allow you to create initial backup locally and can deliver to the nearest azure datacenter for upload.

In next post let’s see how we can configure azure backup and start protecting data.

If you have any questions feel free to contact me on rebeladm@live.com

Image source: https://azure.microsoft.com/en-us/documentation/articles/fundamentals-introduction-to-azure/

Automatic DHCP server Backup

Dynamic Host Configuration Protocol (DHCP) server in organization may require backup and restore dhcp database in event of hardware failure, software failure, migration or in fault configuration change. How many of you guys know that Microsoft automatically backup your dhcp database? Sounds strange right? but yes system automatically backup the DHCP server config. In this post let’s see how we can adjust the default parameters of this automatic backup process.

In my demo I am using a server with windows server 2012 R2 in a domain. It do have DHCP server role installed and configure.

To start the process log in to server as Domain admin or Enterprise admin.
Then Server Manager > DHCP

dhcpbk1

Once mmc load, right click on the server node and click properties.

dhcpbk2

In the new window you can see it shows backup path as C:\Windows\system32\dhcp\backup. This is the default path. But we can change it to local folder or network share. Click on brows to select the new path. In my demo it is set to C:\DHCPBackup. Once path set click on ok.

dhcpbk3

dhcpbk4

System automatically backup the config in every 60 minutes time. But we also can change this schedule as per our requirement.
To do that we need to do some registry key edit. To open the registry mmc, go to Run > regedit

dhcpbk5

Then go to path HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DHCPServer\Parameters
In there you will be able to see a key called BackupInterval.

dhcpbk6

To edit the value double click on it, and then once open select, decimal value option.

dhcpbk7

As you can see default value is 60, to change it type the value you needs (the value represent the number of minutes) and press ok. In my demo I am going to set for 10 minutes.

Once done we can check the folder path we set to confirm the backup it’s made.

dhcpbk8

If you have any questions feel free to contact me on rebeladm@live.com

How to create Active Directory Snapshots?

In one of my previous posts I explain what system state is and how we can use it to backup active directory data. With windows 2008 server Microsoft introduces a new feature called active directory snapshots which can use to backup active directory data. Basically this tools creates a shadow copy of volumes that holds active directory data (Database and logs) using “Volume Shadow Copy Service (VSS)” running on server.

In order to create, view or restore AD snapshots, you need to be member of domain admin group or the enterprise administrator group.

Let’s see how we can create active directory snapshots.

1)    Log in the domain controller as a domain administrator or enterprise administrator with appropriate permissions.
2)    Right click on start button and select “Command Prompt (Admin)". It will open up the command line interface.

snap1

3)    In command prompt type ntdsutil and enter to open up the ntdsutil tool.

snap2

4)    Then type snapshot and press enter.

snap3

5)    In next type activate instance ntds and press enter.

snap4

6)    Then type create and press enter. It will start to create snapshot and give the similar output as following.

snap5

7)    Type and enter quit to exit from the utility. You have to do it twice.

Before we use a snapshot created by this process we need to mount it using active directory mounting tool. Let’s see how we can do it.

1)    Log in the domain controller as a domain administrator or enterprise administrator with appropriate permissions.
2)    Right click on start button and select “Command Prompt (Admin)". It will open up the command line interface.
3)    In command prompt type ntdsutil and enter to open up the ntdsutil tool.
4)    In next type activate instance ntds and press enter.
5)    Then type snapshot and press enter.

snap6

6)    Then type list all

snap7

7)    It will list down all the snapshot created.
8)    Then run command mount 2 ( this is the order number showing in list of snapshot and I needed to mount the one listed in number 2)

snap8

9)    Then as it saying it successfully mounted to the C: drive with folder $SNAP_201502260503_VOLUMEE$

snap9

10)    Then enter quit command twice to exit from utility.

Now to connect with the mounted snapshot we need to execute following,

dsamain –dbpath C:\$SNAP_201502260503_VOLUMEE$\ADDB\ntds.dit –ldapport 10000

In here the dbpath will change according to the snapshot mount you made. Ldapport is any openport in the server to run this snapshot instance.

snap10

 

Now we can access snapshot using port 10000.

Keep this open till we finish with next steps.

Let’s see how we can view the content of snapshot using active directory users and computers console.

1)    Go to server manager > tools > active directory users and computers

snap11

2)    In mmc right click on active directory users and computers option and select change domain controller option

snap12

3)    In here type the domain controller name and the port. Then click ok. Here according to my demo the port should be 10000 ( the one we use with snapshot)  

snap13

4)    As we can see here it successfully connect with the instance.

snap14

Disconnect and unmounts snapshot

In order to disconnect from the running instance, open the command line we left open and press CTRL+C

snap15

1)    Then type ntdsutil to go in to ntdsutil tool
2)    In next type activate instance ntds and press enter.
3)    Then type snapshot and press enter.
4)    Then type list all
5)    It will list down all the snapshot created.

snap16

6)    Then type unmount 2 ( this is the snapshot number I mapped before ). It will unmount the snapshot.
7)    Then enter quit command twice to exit from utility.

snap17

In this article I explain what active directory snapshot is and how we can use it for recoveries. If you have any questions feel free to contact me on rebeladm@live.com