add-circle-bold add-circle add-square add alarm-bell-1 alert-diamond analytics-pie-2 archive archive arrow-down-1 arrow-down-2 arrow-left-1 arrow-right-1 arrow-up-1 attachment-1 bin-paper-1 book-star button-record check-1 check-circle-1 close close-quote close cog-1 cog common-file-stack copy-paste credit-card-1 diagram-fall-down disable time-clock-midnight download-thick-bottom drawer-send envelope-letter envelope-letter expand-6 expand-6 file-code filter-1 floppy-disk flying-insect-honey folder-file-1 headphones-customer-support hierarchy-9 hyperlink-2 information-circle keyboard-arrow-down keyboard-arrow-up layout-module-1 list-bullets lock-2 lock-unlock-1 love-it messages-bubble-square move-to-top multiple-circle multiple-neutral-1 multiple-users-1 navigation-menu-horizontal navigation-menu network-browser open-quote pencil-1 pencil-write pencil-1 print-text rating-star rating-star remove-circle remove-square-1 search send-email-1 shield-warning single-neutral-actions single-neutral smiley-sad-1 smiley-unhappy smiley-indifferent smiley-smile-1_1 smiley-happy smiley-sad-1 smiley-unhappy smiley-indifferent smiley-happy smiley-thrilled social-media-twitter synchronize-arrows-1 tags-double ticket-1 ticket-1 time-clock-circle undo view-1 view-off view wench
Enterprise
Customer Portal
All Categories / Best Practices / Creating a Protection Plan on a Workgroup Computer

Creating a Protection Plan on a Workgroup Computer

When the remote computer to be protected is in a workgroup (not in a domain), follow the steps below to use pass through authentication.

1. Create a backup service account on the Archive Manager server that is a member of the local administrators group.

2. Create a backup service account on each remote computer with the same user name and password, with local administrators membership.

3. Log onto the Archive Manager server with a domain admin account, if one exists, or else with a different local administrator account than the backup account. When you add a remote computer and click on the computer name in the All Computers group, a dialog box will open that asks for credentials. Connect using the backup account. If you log on with the backup account, you will not be able to complete the Create Protection Plan wizard.

4. When the credentials are entered, in the Actions pane an option to Create Protection Plan will appear. Create a protection plan. On the Scheduling page, set the schedule but ignore the account used to run the scheduled task. Click Next and Finish. You will receive an error that the account information could not be saved.

5. Log onto the remote computer with a Remote Desktop session. Open Scheduled Tasks and find the Remote Archive scheduled task. Open it and enter the local backup account name and password. Click OK.

6. With pass through authentication (matching accounts), the plan running on the remote computer attempts to write to a history folder and a logs folder on the Archive Manager computer, but does not have permission. Edit the folders permissions to give local Users group change permissions. The folders are at \Remote\Logs and \History.

7. The Archive Manager server needs the following registry setting if it is not already there. Windows User Account Control (UAC) treats local administrator accounts as standard accounts when accessing the computer using a remote administrative connection. To disable this restriction add a DWORD value to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System called LocalAccountTokenFilterPolicy and set its data to 1. Refer to http://support.microsoft.com/kb/951016 for more information.

DATASTORâ„¢
Enterprise Contact Us
Knowledge Base Software by SupportBee