time-clock-circle multiple-users-1 bin-paper-1 smiley-indifferent view-off alert-diamond envelope-letter rating-star network-browser pencil-write ticket-1 button-record headphones-customer-support close synchronize-arrows-1 common-file-stack close-quote arrow-down-2 multiple-circle attachment-1 folder-file-1 disable smiley-indifferent shield-warning love-it smiley-smile-1_1 check-circle-1 time-clock-midnight floppy-disk view smiley-unhappy book-star lock-unlock-1 arrow-right-1 archive smiley-unhappy send-email-1 hierarchy-9 open-quote add-circle-bold search remove-circle cog-1 filter-1 hyperlink-2 analytics-pie-2 flying-insect-honey navigation-menu-horizontal pencil-1 smiley-thrilled check-1 arrow-up-1 lock-2 navigation-menu add layout-module-1 archive arrow-left-1 wench arrow-down-1 multiple-neutral-1 expand-6 close drawer-send alarm-bell-1 social-media-twitter keyboard-arrow-up ticket-1 copy-paste rating-star download-thick-bottom information-circle smiley-sad-1 single-neutral-actions remove-square-1 file-code pencil-1 keyboard-arrow-down smiley-sad-1 cog single-neutral add-circle move-to-top list-bullets expand-6 undo tags-double smiley-happy view-1 messages-bubble-square print-text add-square smiley-happy credit-card-1 envelope-letter diagram-fall-down
Enterprise
Customer Portal
All Categories / Best Practices / Creating a Protection Plan on a Workgroup Computer

Creating a Protection Plan on a Workgroup Computer

When the remote computer to be protected is in a workgroup (not in a domain), follow the steps below to use pass through authentication.

1. Create a backup service account on the Archive Manager server that is a member of the local administrators group.

2. Create a backup service account on each remote computer with the same user name and password, with local administrators membership.

3. Log onto the Archive Manager server with a domain admin account, if one exists, or else with a different local administrator account than the backup account. When you add a remote computer and click on the computer name in the All Computers group, a dialog box will open that asks for credentials. Connect using the backup account. If you log on with the backup account, you will not be able to complete the Create Protection Plan wizard.

4. When the credentials are entered, in the Actions pane an option to Create Protection Plan will appear. Create a protection plan. On the Scheduling page, set the schedule but ignore the account used to run the scheduled task. Click Next and Finish. You will receive an error that the account information could not be saved.

5. Log onto the remote computer with a Remote Desktop session. Open Scheduled Tasks and find the Remote Archive scheduled task. Open it and enter the local backup account name and password. Click OK.

6. With pass through authentication (matching accounts), the plan running on the remote computer attempts to write to a history folder and a logs folder on the Archive Manager computer, but does not have permission. Edit the folders permissions to give local Users group change permissions. The folders are at \Remote\Logs and \History.

7. The Archive Manager server needs the following registry setting if it is not already there. Windows User Account Control (UAC) treats local administrator accounts as standard accounts when accessing the computer using a remote administrative connection. To disable this restriction add a DWORD value to HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System called LocalAccountTokenFilterPolicy and set its data to 1. Refer to http://support.microsoft.com/kb/951016 for more information.

DATASTORâ„¢
Enterprise Contact Us
Knowledge Base Software by SupportBee