ADSM-L
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: NT Permissions and Restore

2000-09-20 10:13:47
Subject: Re: NT Permissions and Restore
From: "Prather, Wanda" <Wanda.Prather AT JHUAPL DOT EDU>
Date: Wed, 20 Sep 2000 10:14:27 -0400 
Take a look at the Web client.
It's designed for this case - to let someone at a help desk (or operations)
run restores remotely.

You can give your operators an ADSM admin id with the ADSM authority of
"CLIENT OWNER", just for specific machines.
That gives them NO ADSM server management priveleges, but it gives them the
ability to ability to run ADSM remote restores  just for those clients you
specify.  They use a web browser from anwhere on the network to run the
restore.

The restore runs under the authority of the NT "client acceptor" service,
which is the "system" id.  (The client acceptor service is installed
automatically when you install the ADSM client.  You just have to go to
Control Panel/Services and activate it.)  So your operators would have the
ability to restore anything to those machines.

There is the (relatively small) exposure that they could restore something
they shouldn't.  But they can do it without having any NT permissions even
to log on to the NT server at all.

HOpe that helps,,

************************************************************************
Wanda Prather
The Johns Hopkins Applied Physics Lab
443-778-8769
wanda_prather AT jhuapl DOT edu

"Intelligence has much less practical application than you'd think" -
Scott Adams/Dilbert
************************************************************************




> -----Original Message-----
> From: Mayo, Bill [SMTP:bemayo AT CO.PITT.NC DOT US]
> Sent: Wednesday, September 20, 2000 8:22 AM
> To:   ADSM-L AT VM.MARIST DOT EDU
> Subject:      NT Permissions and Restore
>
> I am trying to figure out if there is any way to allow a non-administrator
> account to restore files from ADSM to an NT server.  I am the network
> administrator and have previously handled this.  Our Operations group is
> going to take this over, and I have added them to the Backup Operators
> group
> in NT.  However, from the literature and from a test, it appears that this
> is insufficient to restore from ADSM, although it works with a local NT
> backup.  For security and confidentiality reasons, I am not looking to
> make
> them Administrators of all these machines.  Is there a workaround, or is
> it
> absolutely required to either be an admin or have specific priveleges to
> restore a file in NT?
>
> Thanks,
> Bill Mayo
> Pitt County MIS
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Tape Mounts and Disk Pools, Arturo Lopez
Next by Date:  Inactive Versions, Crump, Adam (CC-MIS Open Sys)
Previous by Thread:  Re: NT Permissions and Restore, Phil Bone
Next by Thread:  NT Permissions and Restore, Mayo , Bill [mailto:bemayo
Indexes:  [Date] [Thread] [Top] [All Lists]