Active Directory restore problem

70 pts.
Tags:
Active Directory
Backup
Domain Controller
Microsoft Exchange 2003
Microsoft Windows Server 2003
Volume Shadow Copy Service
VSS Backup
Dear All, I have a machine1 on which the Operating System is Microsoft Windows Server 2003 Enterprise Edition (Service Pack 2). This is the Domain Controller on which Microsoft Exchange 2003 is installed. I want to perform backup of this machine1 using VSS (application specific writers for AD and System State) and restore it on the machine2 with same configuration. I am able to take the backup of this machine1 using VSS based application. I have another machine2 with same number of partitions and same OS installed. Also, it is a Domain Controller and Microsoft Exchange 2003 is installed on it. I just want to restore the System State Backup and AD backup of machine1 on machine2 using VSS. As I am interested in restoring the Active Directory, I have to restore the System State backup. To restore the backup, I start the machine2 in the active directory restore mode and then perform the restoration operation using VSS. Here, I have observed that there are some writers which requires custom restore operation. This means I need to perform some more steps to achieve this rather than just using VSS writer for restore. I don't found any informaion/documentation on which all custom steps needs to be perfromed for AD and system state restore. Although, without these custom steps when restoration operation performed using VSS and When i restart the machine2, i get the error message as "Directory services could not start because of the following error: The specified network password is not correct. Error Status : 0xc000006a. Please Click ok to shutdown this system and reboot into directory services restore mode, check the event log for more detailed information." and the machine does not starts normally, it continue to restart. please help me to resolve this problem. Thanks.

Answer Wiki

Thanks. We'll let you know when a new response is added.

Hello PCJunkie,

Thanks for the immediate reply. The machine2 is identical machine with same hardware configuration.

Thanks.

Dkk When you built the other DC did you assign the same Administrator password to this new DC as the old one?

I am not familiar with the tool MarvinSterling has posted here. You can always give it a test run to see what you gain from it.

Likewise here is an Article that you should read and cross reference with what you’ve already tried. Restoring a Domain Controller Through Reinstallation and Subsequent Restore from Backup

Discuss This Question: 23  Replies

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • PCJunkie
    DKK may I ask if machine2 is identical machine type with exact hardware configuration? Refer to this article and give some more information. http://support.microsoft.com/kb/249694
    870 pointsBadges:
    report
  • PCJunkie
    I'm sorry I forget to use the code for weblinks
    870 pointsBadges:
    report
  • PCJunkie
    http://support.microsoft.com/kb/249694
    870 pointsBadges:
    report
  • MarvinSterling
    I recommend taking a look at Active adminsitrator that can assist you with active directory backup/restore. T his tool offers very a powerful mechanism for active dirtectory objects restore. I just upgraded this tool to newest release (version 5.1) which had a bunch of great enhancements.
    10 pointsBadges:
    report
  • Dkk
    Dkk When you built the other DC did you assign the same Administrator password to this new DC as the old one? Yes, When i built the other DC, i assigned the same administrator password to this new DC as that of the old one.
    70 pointsBadges:
    report
  • PCJunkie
    Dkk has this issue been resolved? If not have you taken a look at the Microsoft Article that I posted a 2 weeks ago?
    870 pointsBadges:
    report
  • Dkk
    No, my problem is not yet solved and i am struggling to solve the same. I had gone through the link you provided, but did not helped to solve the problem. After all the other trials, the problem is still there. After restoring the system state by setting the BURFLAG, also does not solve the problem. So i started reverse engineering. I just copied the NTDS folder of the backup machine to the machine where i want to perform the restore operation. For this basic single step also i am getting the same error message. Please help me in solving this problem Thanks
    70 pointsBadges:
    report
  • Willybst
    It's not totally clear what you're trying to do but I'm assuming you're testing a disaster recovery restore? You do have Machine2 isolated from the main network and from Machine1, right? Have you tried doing the same procedure using ntbackup? Are you getting any error messages? Someone already posted a link but maybe these will help anyway:
    155 pointsBadges:
    report
  • Willybst
    Hmm, links didn't show up? Maybe because of Opera? Anyway, there's always copy and paste: http://www.computerperformance.co.uk/w2k3/utilities/windows_authoritative_restore.htm http://searchwindowsserver.techtarget.com/tip/0,289483,sid68_gci1342782_mem1,00.html
    155 pointsBadges:
    report
  • Dkk
    Hello Willybst Yes, I am trying to perform disaster recovery. Before booting machine2, i make sure that machine1 is first put off. When machine1 is off then only i boot my machine2. So, machine1 and machine2 are isolated. Yes i have tried same procedure using ntbackup and it worked. Thanks
    70 pointsBadges:
    report
  • Dkk
    hello Willybst , Here are the details I am trying to perform the backup and restore of a exchange server machine. I have a machine with OS as Windows Server 2003. Microsoft Exchange 2003 It is a Domain Controller which have active directory installed I am using the BETEST (VSS SDK) sample code to perform system state backup of this machine as i want to backup Active Directory also. The BETEST actually uses VSS to perform backup and restore. My backup operation is successful. Now i have another machine with same hardware and software configuration as that of the above machine. Also the partitions and with OS partitions are same as above mentioned machine. It has same host name as that of the above machine. At a time only one machine is powered on, in order to avoid conflict. I am again using the betest sample code to restore the above taken backup on this second machine. Apart from the other writers there are three writer which use custom restore method. Betest sample application does not support restore for the writer using custom as a restore method. So the file specific to these three writers are not restored. Those three writers are named as 1. FRS Writer 2. Registry Writer 3. COM+ REGBD Writer As per some literature on net, there are few pre and post restore operation required for these custom restore writer specific file to restore. After going through google search, there is a BURFLAG which is to be set for the restore. Accordingly below are the steps i follow 1. Boot the machine in the Directory Service Restore mode. 2. Set the BURFLAG to D4 (HKEY_LOCAL_MACHINESystemCurrentControlSetServicesNtFrsParametersBackup/RestoreProcess at StartupBurFlags) 3. Perform the system state restore using BETEST application. 4. For the three writers, for whom the betest code doesnt support custom restore method, i manually copy those files to the corresponding folders. 5. Reboot the machine normally. The machine is not booted and the error message is shown as "Directory services could not start because of the following error: The specified network password is not correct. Error Status : 0xc000006a. Please Click ok to shutdown this system and reboot into directory services restore mode, check the event log for more detailed information." When i again reboot the machine in the directory services restore mode. The error events are logged as event id 4007. Please help me solving this problem. Thanks.
    70 pointsBadges:
    report
  • Willybst
    Sorry for the late response, been busy but I'll look some more into it. Can you tell me the event source for 4007? No other errors in the logs? So you did use NTDSUTIL through a command prompt?
    155 pointsBadges:
    report
  • Willybst
    Also, are there any other servers? If so, what services do they have running? Where does the DNS point to? If you don't mind me asking, why do you want to use VSS when you already know it works with ntbackup? Just curious. If you can make it work with ntbackup, you must be doing everything correct so then it must be something to do with the application.
    155 pointsBadges:
    report
  • Willybst
    Have you read everything under the link below (hopefully this works better in IE)? Should give some good information. Like it mentions the different network card, which does actually sound likely to be causing your problems to me: --------------------- Backup applications need to take special care when restoring the HKEY_LOCAL_MACHINESYSTEM hive because the process of installing a temporary version of the Windows operating system will have established keys in the newly installed system hive whose values must survive the restore operation. For example, when the replacement system has a network interface card different from the original system, restoration of the original keys for the previous card will lead to unpredictable results. This is because the Plug and Play service has detected and placed proper service and driver registry entries into the registry. These values must be preserved to properly boot after system restore. --------------------- Maybe you can solve this simply by checking the network adapter settings after the restore and setting them the same. Otherwise you'll have to follow the instructions in the article. Any other minor differences like chipset versions might be interfering too, they might differ between models. But it's likely the NIC which is supposed to be unique. Hope this helps.
    155 pointsBadges:
    report
  • Willybst
    OK, starting to feel like an idiot here, with these links not working. http://msdn.microsoft.com/en-us/library/aa381523(VS.85).aspx http://msdn.microsoft.com/en-us/library/aa381523(VS.85).aspx
    155 pointsBadges:
    report
  • Willybst
    http://msdn.microsoft.com/en-us/library/aa381523(VS.85).aspx link
    155 pointsBadges:
    report
  • Dkk
    Hello Willybst, The Event Source for 4007 is DNS. Yes apart from this error i have few more error logged in, they are as below 1005 event source is MSExchangeSA 9607 event source is MSExchangeIS 29 event source is W32Time 6008 event source is EventLog I have use NTDSUTIL before rebooting the machine, The NTDS folder seems to be stable. This is the only singel server. Actually i want to perform disastor recovery of a DC programmatically. I dont want to use any other application to perform the same. So, i am using VSS to backup and Restore DC. The ntbackup application works fine for backup and restore for these set of machine, So, i dont think there is any hardware conflict or any driver issue. Thanks
    70 pointsBadges:
    report
  • Willybst
    Hi Dkk. I'm not saying there's a hardware conflict or driver issue, but even if the NIC is exactly the same, it is still unique too, so if Windows sees is at a different card, the settings might be wrong and a whole bunch of services like DNS and Exchange could fail and perhaps cause your rebooting. Even if this isn't the problem, it is clear that the VSS restore works different than the ntbackup restore and that must be where your problem lies. VSS restores parts of the registry that it shouldn't. Did you read the articles of the link I posted? They tell you what to do. I admit my attempts to link it were chaotic, also because it's strangely formatted and this text editor is breaking it up. My post from June 4th at 5:01PM GMT has a working link though. Otherwise paste this into your address bar but take out the spaces: msdn. microsoft. com /en-us /library /aa381523(VS.85).aspx I guess another test would be if your servers have PCI network cards, to take the one out of the first server and put it in the second and see if the restore works then.
    155 pointsBadges:
    report
  • PCJunkie
    Willybst, be sure to add a link name like Microsoft or NTBackup or something before using the html closing link. Custom Backups and Restores
    870 pointsBadges:
    report
  • PCJunkie
    DKK has this issue been resolved yet?
    870 pointsBadges:
    report
  • EXC
    hi everyone I am also working on this topic I have a HP pro Liant Server HP370.. with two SCSI drives... there are two scenerios in my mind First take the back and restore on 2nd harddisk Second create a RAID 1 (Mirroring) measns if tomorrow my one harddisk goes crash I just unplug and put the second SCSI as primary master and boot from that drive. In first step I took the backup through Backup Utility in Windows 2003 server and took the backup of system state(AD+exchange) and done successfully.. now what will the procedure to restore it on second SCSI drive....???????????? please reply me on rashid_47010@hotmail.com waiting for your reply
    25 pointsBadges:
    report
  • Dkk
    [...] in windows server 2003 ... Remove active directory in directory services restore mode | it ... Active directory restore problem Enabling the active directory recycle bin feature on windows 2008 r2 Active directory domain [...]
    0 pointsBadges:
    report
  • Genderhayes
    You will have to verify that it is, in fact, a failure or corruption within the AD database, and not a network-related problem or other problem then have to perform a specific directory restore mode recovery, where you have to decide between an authoritative and a non-authoritative mode recovery is complete need to verify whether the DC is replicating and functioning properly
    7,505 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following