Security Considerations

There are several steps that you can take to enhance the security and operation of your backup-and-restore operations. You should also take steps to secure your backup media.

When you form a backup plan, consider implementing the following methods:

• Secure both the storage device and the backup media. Data from stolen media can be accessed and restored to another server.
• Back up an entire volume in case of a disk failure. It is more efficient to restore the entire volume in one operation.
• Always back up the system state data on a domain controller to prevent the loss of user accounts and security information.
• Keep three current copies of backup media. Store at least one copy off-site in a properly controlled environment.

Backup and Restore Rights

Backup and restore rights are independent of each other. However, you can grant both rights together.

Important

You must have administrative privileges to restore the system, but only restore privileges are required to restore files.

If you are the system administrator, extend backup and restore rights only to persons responsible for backing up your network. In a minimum-security or medium-security network, grant one user backup rights and another user restore rights. Train personnel with restore rights to perform all restore tasks in the event that you are unavailable. In a high-security network, only you should restore files.

Caution

A person who does not have permission to write to a file might have permission to restore the file. During restoration, such permission conflicts are ignored, and the existing file can be overwritten.

Granting Rights at Large Sites

Large sites might have two groups of backup operators: one with backup rights only; and the other with restore rights. It is recommended that you implement the following guidelines:

• Grant backup-only rights by creating a local group named Backup Operators and give members Backup files and directories user rights. Then, create a global group named Backup Only and add it to the local group.
• Grant restore-only rights by creating a local group named Restore Operators and give members Restore files and directories user rights. Then, create a global group named Restore Only and add it to the local group.

File Permissions

In Windows 2000, access to NTFS files is limited by NTFS file permissions, share permissions, and file attributes. You cannot back up or restore NTFS files to which you do not have access right unless:

• You belong to the permissions group of administrators, backup operators, or restore operators.
• You have been granted user rights to Backup files and directories (if you are backing up) and Restore files and directories (if you are restoring).

Note

Neither the FAT16 nor the FAT32 file systems provide file permissions.

Storing Backup Media

Some kinds of information need to be stored near your computers to be readily available; store some data off-site to be available in the event of a disaster or for long-term storage.

Caution

Backup media lasts longer in cool, humidity-controlled locations. Your storage area should also be free of magnetic fields, such as those near the backs of computer terminals and analog telephone equipment.

On-Site Storage

Some data needs to be stored on-site and readily available in the event of a failure.

Daily backups, whether full or incremental   Store media in a fireproof safe or cabinet. Secure storage protects against natural disaster, theft, and sabotage.

Copies of the media   If more than one copy of a software program is purchased, store one off-site if possible. If you have only one copy, you can back it up to media and label it as a backup of the application. If you need to reinstall software, you can restore from media to a computer running Windows 2000. You can then run the application setup program over the network and delete the software from the server.

Off-Site Storage

For highly confidential data that must be stored off-site, consider assistance from a company that specializes in secure data storage. Such companies lease space in underground vaults that remain impervious to most threats. If the cost or logistics of such protection is too great, use an alternative solution, such as a safe-deposit box or an off-site fireproof safe designed to protect magnetic media.

It is recommended that you store the following items off-site:

• A full backup of the entire system, best performed weekly.
• Original software installed on computers (only copies kept on site).
• Documents required for processing an insurance claim, such as purchase orders or receipts for computer hardware and software. (Pertinent information is available from your business insurance agent.)
• Information required to get network hardware reinstalled or reconfigured.
• Information required to reconfigure your storage subsystem.

Tip

Make sure that your off-site storage location is bonded.

© 1985-2000 Microsoft Corporation. All rights reserved.