From the course: Career Essentials in System Administration by Microsoft and LinkedIn

Overview of backup solutions

From the course: Career Essentials in System Administration by Microsoft and LinkedIn

Overview of backup solutions

- A backup is usually a server on site, or in the cloud that enables a copy of all data, files, applications, and/or databases. It combines hardware and software technologies that provide backup storage, and restoration services to connected computers, servers, or related devices. It may also include all Active Directory files and objects, which can be very important in case all domain controllers go offline. Backup solutions should include volume shadow copies for third-party backup programs to properly backup open files so they don't get missed. Backup solutions shouldn't just include Windows servers. We should include client computers, as well as Linux, Unix, and Mac when used in an organization. As far as programs and backup mediums go sysadmins have a lot from which to choose. There are built-in applications free to use in all operating systems, but if you want to use a single source for a backup to cover all on-premises resources you'll need third-party solutions like Backup Exec, Veem, Commvault, or others. You can back up to a local USB drive, internal storage on another server, a storage area network, or a network attached storage, or cloud storage. Cloud storage will be the slowest and most expensive, but does offer protection against local disasters, and keeps the sysadmin from having to change out storage devices when full, or damaged. When restoring from cloud storage, you also have to keep in mind that restoration could take days or weeks depending on your ISP speed, and equipment capability. Local storage is the fastest and least expensive, but you need to take some precautions. Be sure to have a rotated offline storage device in case of an encryption ransomware attack, where even the backup device can be encrypted. Another good plan is to use storage that isn't part of the Active Directory network. So the attacker may not even be aware of its presence. Other options include a privileged access workstation where it's the only device where sysadmins can make any changes to the network. And it's turned off when not in use. A Bastion network creates a separate AD forest and domain where all administrators are removed from the production domain, and replaced with shadow admins that only get activated when needed. Just enough administration is a way to allow each sysadmin only certain admin rights they need. And then the rights disappear when not in use. Restoring data when needed needs to be done carefully to not overwrite files that may still be in use with older data from a previous backup. Sysadmins also don't want to overwrite any production AD objects. Backing up and restoring data is an essential part of every corporate entity in the modern world. Understanding how to back up, secure, and restore data is an important administrative role.

Contents