Understanding the Data Types to Back Up

There are a number of reasons why Exchange data should be backed up:

  • To provide protection in the event of a system crash.
  • To be able to recover corrupt databases.
  • To be able to recover the following:
    • Mailboxes.
    • Folders.
    • Messages.
  • To restore Exchange in a lab for testing.

The different types of data that should be backed up can be classified as follows:

  • Static data: Consists of data that hardly ever changes:
    • Windows Server 2003 operating system software.
    • Software updates and service packs.
    • Packaged application software.
    • Supporting software.
    • Management scripts.
    • User application software.
  • Dynamic data: Consists of data that changes all the time:
    • Active Directory data.
    • System state data.
    • Exchange Server 2003 databases.
    • Exchange Server 2003 log files.
    • Cluster quorum data.
    • Microsoft certificate services data.
    • Site Replication Service (SRS) databases.

Understanding the Different Back Up Strategies

The Windows 2003 Backup utility can be used to deploy a backup strategy for Exchange Server 2003. A backup is the process of archiving data and system files on a computer to a different location on a hard disk, or other media type.

The Windows Server 2003 Backup utility offers a few methods that you can use to create backup jobs and execute backup jobs. You create a backup job by:

  • Specifying the drives, directories and files that should be backed up.
  • Specifying the storage medium for the backup.
  • Specifying the time when the backup should occur, and other backup options.

The different backup strategies you can choose between are listed here:

  • Full backup: A full backup should be performed daily. A full backup backs up the database files and the transaction log files. After the full backup is performed, all transaction log files that have been written to the database are deleted.
  • Full plus incremental backup: Because full backups are time consuming, you can perform a full backup periodically and perform an incremental backup daily. An incremental backup only backs up transaction log data that has changed from the time that the previous full backup or incremental backup was performed. Database files are not backed up. After an incremental backup is performed, the transaction log files remain on the server – they are not deleted.
  • Full Plus Differential backup: You can also perform a full backup periodically and perform a differential backup daily. A differential backup always backs up transaction files. Whether the files were backed up or not, is not considered. After a differential backup is performed, the transaction log files remain on the server – they are not deleted.
  • Copy backup: Each file that has been set to be backed up is backed up, However, with copy backups, the archive attribute’s settings in not modified which allow you to carry out different types of backups on the files. Copy backups come are useful when you need to move data between systems. It can also be used to create an archive copy of data.
  • Copy Plus Incremental backup: You can also perform a copy backup together with incremental backups. The purpose of this strategy is to preserve the transaction log files.

Understanding Online and Offline Backups

When an online backup is performed, the Exchange store and all services cotinue to run during the backup process, which means that users are able to access and use their mailboxes while the backup is running. When a full online backup is performed, the .edb, .stm, and .log files are backed up. This means that the entire Exchange store is backed up.

After an online backup is performed, you should check the Event Viewer tool to determine whether the Exchange store is corrupt.

With an offline backup, you have to dismount the mailbox store and public folder store before you perform the backup. You next have to manually back up the database and transaction log files.

Performing an offline backup is generally not recommended, except for the following circumstances:

  • When an online backup cannot be performed.
  • When using third-party backup software that provides no support for Exchange online backup application programming interfaces (APIs).

The main disadvantages of using offline backups for Exchange are listed here:

  • All database services have to be stopped.
  • Users are unable to use their mailboxes during an offline backup.
  • You cannot determine whether the Exchange database is corrupt because the database is not checked when the backup is performed.
  • The probability of data loss is increased.
  • Any transaction log files that have transactions already written to the database files are not purged.

Hybir Backup

Using the Volume Shadow Copy Service

Volume shadow copies is a new Windows Server 2003 feature that can be used to create copies of files at a specific point in time, or set time interval. Shadow copies can only be created on NTFS volumes to create automatic backups of files or data per volume. The shadow copies feature is in fact a new NTFS feature introduced with Windows Server 2003. Shadow copies are used to create shadowed copies of files, at a specified point in time and on a per volume basis, which means that you basically configure shadow copies at the volume level.

Shadow copies should not be utilized as a replacement for regular backups. You should continue to perform regular backups of the system. Volume shadow copies can be used to create immediate backups of Exchange data, at a specific point in time, and while the system is online.

Using the Volume Shadow Copy service, you can create a shadow copy of the disk at the start of the backup process, and then use the shadow copy rather than the working disk for the backup.

A few advantages of enabling volume shadow copies are listed here:

  • Through volume shadow copies, you can recover files which have been overwritten when you need to use a previous version of the file.
  • Volume shadow copies also enable you to compare changes between a current version of the file and a previous version of the file.

To enable shadow copies on a volume,

  • You must be a member of the Administrators group on the local machine.
  • Shadow copies must be enabled on the server.
  • For clients to access shadow copies, they need to have the Previous Versions Client software installed. The software can be found in the %windir%system32clientstwclient folder.
  • The software can be distributed or deployed through Group Policy, Systems Management Server (SMS), or you can create a share so that clients can download the necessary software.

How to enable the Volume Shadow Copy service:

  1. Open the Services console.
  2. Under In Services (Local), right-click Volume Shadow Copy and then select Start from the shortcut menu.
  3. Right-click Volume Shadow Copy and select Properties from the shortcut menu.
  4. The Volume Shadow Copy Properties dialog box opens.
  5. In the Startup Type box, select Automatic.
  6. Click OK.

Using the Windows Backup Utility

The indows Backup utility can be run in either of these modes:

  • Wizard mode: In Wizard mode, you can choose between the following options to create a backup through the user interface:
    • Back up files and configuration settings and restore the files and settings.
    • Specify a full backup.
    • Specify that specific components be backed up.
    • Specify the backup media, tape and file.
  • Advanced mode: The Advanced mode provides more features and flexibility than that offered in Wizard mode. To access Advanced Mode, you have to clear the checkbox for Always Start In Wizard mode and then select the Advanced Mode link. With Backup in Advanced Mode, you are given the following options:
    • Start the Backup Wizard
    • Start the Restore Wizard
    • Start the Automated System Recovery Wizard

The Backup tab is made up of two panes that allow you to examine the files and folders on the computer. You can use the left tab to browse through the drives. You can then examine the folders on the particular drives. Simply select a drive or a folder. You can view any files and folder contained by the drive or folder in the right pane. Within each pane, there are options or checkboxes alongside the drivers, folders or files. You can specify a drive, files or folders for backup by merely enabling or disabling the checkboxes.
The Backup destination field is where you select the storage medium for the backup. Windows Server 2003 Backup by default offers only the File option in the Backup destination field. Any installed tape drive or other device is also available as a destination. After you selected your storage medium for the backup, you have to indicate the tape or disk name or the path and filename the program should utilize when creating a backup file. You use the Backup Media field or the File Name field to specify this information. After specifying all the relevant information, click the Start Backup button to start a backup job.

To backup and restore files and folders only on the local computer, you have to be a member of the Administrators or Backup Operators local group. To backup and restore files and folders on computers within the domain, you have to be a member of the Administrators or Backup Operators group on the domain controller. The owners of files and folders can usually backup their files if they have one or more of these permissions: Full Control, Modify, Read and Execute, and Read.

You can schedule a backup job by clicking Schedule in the Backup Job Information dialog box. Select Properties to navigate to the Schedule Job dialog box. The options available in the Schedule Task drop down list are

  • Once. The backup job is performed once on a particular date and at a particular time.
  • Daily. The backup job is performed at a particular time every day.
  • Weekly. The backup job is performed at a particular time on every day of the week indicated.
  • Monthly. The backup job is performed at a particular time once a month.
  • At System Startup. The backup job is performed when the system is started.
  • At Logon. The backup job is performed when the owner logs on.
  • When Idle. The backup job is performed when the system is idle for a defined time period.

When you select the Once, Daily, Weekly, or Monthly option, the Advanced button is available for you to select. Click the Advanced button to open the Advanced Schedule Options dialog box. You can specify a date at which a recurring job should cease to occur. You can also configure to repeat continuously.

How to perform an online back up of a storage group

  1. Click Start, All Programs, Accessories, System Tools, and then Backup to open the Windows Backup utilit.
  2. Start the Backup Or Restore Wizard.
  3. Click Next on the Welcome To The Backup Or Restore Wizard screen.
  4. The Backup Or Restore page opens.
  5. Select the Back Up All Files And Settings option. Click Next.
  6. When the What To Back Up page opens, click the Let Me Choose What To Back Up option. Click Next.
  7. The Items To Backup Up page opens.
  8. In the Items To Back Up box, expand Microsoft Exchange Server, the Exchange server, Microsoft Information Store, and click the My Storage Group checkbox. Click Next.
  9. When the Backup Type, Destination, And Name page opens, click the Browse button.
  10. The Save As dialog box opens.
  11. Specify the location for the backup and provide a name for the backup in the File Name box. Click Save.
  12. Click Next on the Backup Type, Destination, And Name page.
  13. The Completing The Backup Or Restore Wizard page opens.
  14. Click Finish.
  15. After the backup process has completed, the Backup Progress dialog box opens.
  16. Click Report and then check whether any errors were encountered during the backup.
  17. Click Close to close the Backup Progress dialog box.

How to create a backup in Advanced mode

  1. Click Start, All Programs, Accessories, System Tools, and then Backup to open the Windows Backup utility.
  2. Click the Advanced Mode.
  3. To start the Backup Wizard, click the Backup Wizard (Advanced) option.
  4. Click Next on the Welcome page of the Backup Wizard.
  5. When the What to Back Up page opens, select Back Up Selected Files, Drives, or Network Data and then click Next.
  6. On the Items to Back Up page, select the local drives and system data and click Next.
  7. Specify the location for the backup and provide a name for the backup in the File Name box. Click Save.
  8. Select the backup media type and then select the media tape/file. Click Next.
  9. When the Completing the Backup Wizard page opens, click the Advanced button.
  10. Select the backup type.
  11. Specify whether to back up migrated remote storage data. Click Next.
  12. Specify whether a verify operation will be run on the backup media. Click Next.
  13. Select the Media Overwrite option and click Next.
  14. Specify whether the backup should be performed immediately or at a later stage, based on a schedule that will be defined.
  15. To create a schedule, click the Set Schedule button.
  16. The Schedule Job dialog box opens.
  17. On the Schedule tab, specify the following:
    • The frequency that the backup should occur.
    • The Start time
    • The Start date.
  1. Click ok.
  2. The Set Account Information page opens.
  3. Specify the username and password that should be used to run the backup job. Click OK.
  4. Click Next.
  5. Click Finish on the Completing The Backup Wizard page.

Using Automated System Recovery (ASR)

The Automated System Recovery (ASR) feature is a new feature found in the Windows Backup utility. Automated System Recovery should be used to restore the system when all other disaster recovery tools are unavailable or do not work. ASR basically automates the procedure of saving and restoring system state information. In the event of all other recovery methods not being successful, you can use ASR to restore the operating system to a previous state so that you can start Windows Server 2003.

ASR works by:

  • Writing operating system files onto backup media.
  • Writing disk configuration information to floppy disk.

You need you to create an ASR set, which includes the following:

  • A backup of all your critical system files.
  • A floppy disk that lists which Windows system files (system settings) is installed on the computer.

When performing an Automated System Recovery, you need the following components:

  • Windows Server 2003 installation CD-ROM.
  • The ASR backup.
  • The floppy disk listing which Windows system files are installed.

ASR consists of the following two components:

  • ASR backup: The system information included in an ASR backup is:
    • System state data.
    • System services.
    • Disk configuration information.
    • All other files that are connected to the operating system.

An important point to remember about ASR is that it can only be used to restore the Windows operating system and important operating system information – it cannot back up data files or folders and files.

  • ASR restore: The information restored are listed below:
    • A basic version of Windows.
    • The copy of the system partition which you backed up using the ASR backup component.
    • Disk configuration information needed to start the computer.

    You cannot perform the restore process from network shares. In fact, you have to utilize locally attached devices:

    • Removable disks.
    • Tape backup drives.
    • Hard disks.

The Windows Backup utility is used to create ASR sets.Should the Backup utility automatically display the Backup And Restore Wizard, click Advanced Mode.

You can initiate the Automated System Recovery Preparation Wizard:

  • From the Welcome tab of the Backup utility.
  • From the Tools menu.

The requirements for using ASR are listed here:

  • ASR does not support 4 GB FAT16 partitions using a cluster size of 64 kilobytes (KB). ASR only supports 2.1 GB FAT16 partitions. You have to convert 4 GB FAT16 partitions to NTFS in order to utilize ASR.
  • You need a 1.44 megabyte (MB) floppy disk to create the ASR disk.
  • ASR differs from the System Restore feature. The System Restore feature allows you to start Windows XP Professional or Windows Server 2003 in Normal mode or Safe mode. System Restore saves incremental changes or shadow copies. ASR on the other hand backs up all files located on the system partition. Before deciding to use ASR, you should first try utilizing the System Restore feature.
  • During the restore process, ASR formats the system partition. If your system partition includes dedicated space for user data files, you could lose this data because personal data and application files are not restored.

How to create an ASR backup:

  1. Click Start, All Programs, Accessories, System Tools and then select the Backup utility.
  2. Click Advanced Mode.
  3. To start the Automated System Recovery Preparation Wizard, click Automated System Recovery Wizard.
  4. When the Automated System Recovery Preparation Wizard launches, click Next on the Welcome to the Automated System Recovery Preparation Wizard screen.
  5. On the Backup Destination screen, select the backup type and location for the ASR files. Click Next.
  6. The ASR preparation process next commences.
  7. Click Finish.
  8. When the wizard is closed, the backing up of your system files starts automatically.
  9. When prompted, insert a blank floppy disk into your drive to create the ASR disk. All necessary system settings are copied to the floppy disk. With Windows Server 2003, only the following three files are copied to the floppy disk:
    • Setup.log; points to the system files’ location on the server.
    • Asr.sif; holds disk, partition and volume information on the system, and the location of the backup medi utilized
    • Asrpnp.sif; holds information on the plug and play devices on the system.

How to back up the IIS metabase

To back up the metabase using IIS Manager:

  1. Open the IIS Manager.
  2. Navigate to the server whose metabase you want to back up.
  3. Right-click the IIS server, select All Tasks from the shortcut menu, and then select Backup/Restore Configuration.
  4. The Configuration Backup/Restore dialog box opens. The Configuration Backup/Restore dialog box displays the following information:
    • The initial configuration backups created when IIS was first installed.
    • All manually created backups.
    • All history files.
  5. Click the Create Backup button to back up the metabase.
  6. When the Configuration Backup dialog box opens, enter a name for the backup and a password for securing the backup.
  7. Click OK.
  8. The newly created backup is now listed in the Backup list box of the Configuration Backup/Restore dialog box.
  9. All backup files are in the following folder:
    • Systemroot%System32 inetservMetaBack
      • An .md0 file extension indicates a metabase backup file
      • An .sc0 file extension indicates a metabase schema backup file

You can export portions of the metabase, or the entire metabase configuration information to a file. You can basically export the configuration settings for only a particular website or virtual directory, or you can export all configuration settings. You can also through exporting, create a metabase template file to copy configuration information to multiple IIS machines. You can export metabase configuration information by using the IIS Manager, or the Iiscnfg.vbs WMI script.

To export the metabase using the IIS Manager,

  1. Open the IIS Manager.
  2. Right-click the IIS server whose configuration setting you want to export, select All Tasks on the shortcut menu, and then click Save Configuration To A File.
  3. When the Save Configuration To A File dialog box opens, enter a name for the file in the File Name text box.
  4. Verify that the correct location is specified in the Path checkbox.
  5. Select the Encrypt Configuration Using Password checkbox.
  6. Click OK.

How to create a backup of the Certificate Authority

  1. Access the Certificate Authority server.
  2. Open the Certificate Authority management tool.
  3. Click the Action menu and select All Tasks and then Back Up CA from the shortcut menu.
  4. The Certification Authority Backup Wizard starts.
  5. Click Next on the Certification Authority Backup Wizard Welcome screen.
  6. The Items to Back Up page opens. Choose the following options:
    • Private Key and CA Certificate checkbox.
    • Certificate Database and Certificate Database Log checkbox.
  7. In the Backup to this folder box, specify the backup location. Click Next.
  8. Provide a password for restoring the Private Key and CA Certificate and click Next.
  9. Click Finish.

Best Practices for Backing up your Exchange Server 2003 Environment

A few best practices for backing up your Exchange Server 2003 environment are summarized below:

  • An effective backup solution should back up the following components:
    • Exchange servers
    • Global Catalog server
    • Front-end Web servers
    • Certificate of Authority server
    • Any other support servers being used.
  • When determining the scope of the backup, you have to include all areas of Exchange operation and ensure that all associated services and the different echnologies are included in your backup process.
  • You should maintain configuration documentation for your Exchange server, and document all updates to the Exchange environment.
  • You should back up the system volumes and system state data simultaneously. This strategy simplifies the server recovery process
  • After the Exchange server is configured, it is recommended that you perform an Automated System Recovery (ASR) backup. You should perform an ASR backup when any hardware configurations changes are made as well.
  • To be able to perform an Active Directory authoritative restore when it is needed, you also need to perform an ASR backup for domain controllers.