Domain Controller restore from Ghost image rather than Backup - potential issues ?

Discussion in 'Windows Server' started by User, Nov 22, 2006.

  1. User

    User Guest

    We are currently considering restoring a small network domain controller
    from a ghost image which was taken 4 days previously. I know this is not
    the best way to restore a domain controller but would appreciate any
    comments regarding issues that may crop up. The network only has 15 servers
    with 1 domain controller and a small number of workstations. If during the
    4 days period that had passed no changes had been made to the domain in any
    way e.g. password changes, addition or changes to user account or servers

    Can anyone suggest what problems may arise if the domain controller was
    restored from this image and brought straight back online ? Once restored
    from the image would we need to update any settings such as the time to
    avoid Kerberos issues ?

    Thanks for any help.
    User, Nov 22, 2006
    1. Advertisements

  2. comments regarding issues that may crop up. The network only has 15
    Any reason why you don't have a second DC on the domain? If the first went
    out you can make a few changes on the second and keep your domain up (and
    your users working).

    At least then if it takes 4 days for you to recover the other DC your
    network won't be down.

    Best practices is to have a second DC on the domain.

    Danny Sanders, Nov 22, 2006
    1. Advertisements

  3. User

    User Guest

    Hi Danny. I totally agree. This will all be possible including a correct
    backup policy once the network is restored and working but first the only DC
    will have to be restored from a Ghost image. Although far from ideal or
    recommended I can't see any issues other than excessive time differences
    compared with the member servers and workstations.

    I really appreciate any advice on other side effects if you can think of

    User, Nov 23, 2006
  4. Is this the only DC for the entire domani that you're restoring?

    Password changes for users could be an issue but clients use passwords to
    keep the accounts connected securely to the domain, you could loose a few.

    DNS/WINS could be a little messed up but it will sort itself out given time.

    External trusts might kick the bucket too.

    Sounds like you have no other choice than restoring it anyway. Give it a go
    and see what happens.
    Steve Goddard, Nov 23, 2006
  5. User

    User Guest

    Hi Steve. Thanks for your help. It is unfortunately the only DC for the
    entire domain. There are not a great deal of users and so far there appears
    to be no passwords changes since the backup. There are also no external
    trusts etc, purely standalone single domain with one DC.

    Am I right in thinking Kerberos will complain about the time difference
    since the DC will be at least 4-5 days behind the servers and workstations
    on the network. Would adjusting the time to near enough matching the time
    on the current servers be enough to remove this issue ?

    Thanks again.
    User, Nov 25, 2006
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.