ADSM-L
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: NTFS permissions

2000-07-13 04:51:34
Subject: Re: NTFS permissions
From: "TORRECILLA PUENTE, Jose Ignacio" <jose.ignacio.torrecilla AT BIZKAIA DOT NET>
Date: Thu, 13 Jul 2000 10:51:34 +0200 
Hi,

For that problem look at this

  - A Windows NT user must possess the following rights to backup/restore
    files:

    Backup Files
    Restore Files
    Manage Auditing and Security Logs


This is in read1st.txt in client ADSM directory "win32\intel\config"


Iñaki Torrecilla
TECNICA DE SISTEMAS
LANTIK, S.A.
Spain

> -----Mensaje original-----
> De:   f h [SMTP:fhadsm AT YAHOO DOT FR]
> Enviado el:   miércoles 12 de julio de 2000 18:13
> Para: ADSM-L AT VM.MARIST DOT EDU
> Asunto:       NTFS permissions
> 
> Hello ADSM guy,
> 
> i have the same pb than Greg but no answer is on the
> site !!
> 
> Hope this helps
> 
> Fabrice H
> BIL
> 
> ****************************************************
> I understand how the local SYSTEM account works.  I am
> only backing up local resources.
> I know that by default, the SYSTEM account has FULL
> Control of all local resources.
> Our NT Admins have manually removed the SYSTEM and
> Administrator's account from the NTFS permissions for
> all the user directories.
> 
> My question is:
> how are my backups, and restores, still working if
> they are not using the Administrator or the SYSTEM
> account?
> I think I'll do some testing using the Security
> Auditing.
> 
> Greg Heis
> FedEx
> 
> 
> *****************************************************
> 
> 
> -----Original Message-----
> From: Pete Tanenhaus <tanenhau AT us.ibm DOT com>
> To: ADSM-L AT VM.MARIST DOT EDU <ADSM-L AT VM.MARIST DOT EDU>
> Date: Monday, October 12, 1998 5:08 PM
> Subject: NTFS permissions
> 
> 
> The local system account has full control over all
> local resources
> (registry,
> drives, etc.) so
> you shouldn't have any problems provided that you
> aren't accessing any
> non-local resources
> (remote drives or shares) from your schedule (the
> local system account =
> has
> no
> domain authority
> so accessing remote resources will always fail).
> 
> Note that by default the client service is installed
> to logon as the lo=
> cal
> system account.
> 
> Hope this helps ......
> 
> 
> Pete Tanenhaus, ADSM NT Development
> ---------------------- Forwarded by Pete Tanenhaus/San
> Jose/IBM on 10/1=
> 2/98
> 02:05 PM ---------------------------
> 
> 
> ADSM-L AT VM.MARIST DOT EDU on 10/12/98 12:38:24 PM
> Please respond to ADSM-L AT VM.MARIST DOT EDU
> To: ADSM-L AT VM.MARIST DOT EDU
> cc:
> Subject: NTFS permissions
> 
> 
> Hello ADSM/NT folks,
> 
> Our illustrious Data Protection department has
> implemented a new
> requirement.  For our NT servers, user Home
> directories will not be
> accessible by any other user except the user himself.
> In other words, =
> the
> NT "SYSTEM" user and the ADMINISTRATOR will not have
> permission to acce=
> ss
> these files.  I have setup the ADSM Client Scheduler
> to run under the
> "SYSTEM" account.  I have written procedures for our
> operators to log i=
> n as
> the ADMINISTRATOR when using the Backup/Archive
> client.
> 
> I was sure that this would cause problems with ADSM.
> It seems though t=
> hat
> the scheduled backup completed OK.  I also ran a test
> where I was able =
> to
> restore a file to a user's home directory where the
> ADMINISTRATOR has n=
> o
> permissions.
> 
> How is this possible?  What are the ADSM requirements?
> 
> Thanks in advance for your help.
> 
> Greg Heis
> FedEx
> 
> 
> 
> ___________________________________________________________
> Do You Yahoo!?
> Achetez, vendez! @ votre prix! Sur http://encheres.yahoo.fr
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  unsubscribe, Tage Syrstad
Next by Date:  Server Crashed: pkthread.c, Brian T. Huntley
Previous by Thread:  NTFS permissions, f h
Next by Thread:  NT Event Log errors, John Stephens
Indexes:  [Date] [Thread] [Top] [All Lists]