Drive encrypted using Bitlocker...encrypting backup on Server 2008

I've seen this topic discussed a few times but with very little real explanation on how to do this. 
I have several servers for several customers that now must be encrypted.  I've run a few tests with our own internal servers and one user server and the drive encryption goes off without a hitch.
Encrypting their backups however is still an issue.  Usually they are setup with 2 drives, one on site, one off.  Obviously the one on site is a theft issue so it defeats the purpose of encrypting the server if there is an un-encrypted backup.
Bit Locker to Go is an R2 feature, isn't it?  Plus when you setup a drive for Windows backup, it formats the drive so is Bitlocker even usable?
The whole idea of encrypting their drives concerns me because of recovering the data/server after a crash.  We use encrypted online back up but the need to do a bare metal restore is the part that concerns me.  I even thought of adding a third drive to the mix just to be overly redundant(paranoid).
What is the best way to handle this?  How does it work in the event of a server crash, how do you do a bare metal restore with a bit locker drive?
Thanks

You can bitlock a portable drive for Server 2012 R2 backup as follows:
Using Essentials, the first time you use the drive
1. Start the dashboard and go to the Storage Tab and select
Disks
2. Click on the new drive and add it to the backup. Give it a unique label. Backup will format it and remove the drive letter.
3. Go to the start screen and start Administrative tools | Computer management
4. Find Disk Management and scroll down to find your backup disk.
5. Right click on the disk block and choose Change Drive Letter and Paths.
Add a drive letter.
6. Open This PC and right click on your drive. Choose
Turn on Bitlocker.
7. Give the disk a password and save or print the key. Choose to encrypt used space only.
8. When Bitlock finishs encrypting the drive, click on the Manage Bitlocker link at the bottom of the progress screen. Find your disk and click the dropdown arrow. Click on
Turn on Auto-unlock. (Auto-unlock greatly simplifies swapping disks. However, my experience has been it will not reliably unlock the disk after a restart or power failure. You may have to log in for the disk to be reconnected.)
9. You can use Disk Manager  as you did before to
Remove the drive letter. It can be handy for verifying the disk's status or distinguishing multiple disks, but you don't really need it.
10. Close everything up. You are good to go. After this, the disk can be replaced using the normal procedures for swapping USB drives.

Similar Messages

  • I baught Seagate Backup plus 2T hard drive to use as my Backup time machine. But its not working when i connect to time machine its not coping files, it keep saying preparing files. Can someone help me please...

    i baught Seagate Backup plus 2T hard drive to use as my Backup time machine. But its not working. when i connect to time machine its not coping files, it keep saying preparing files. Can someone help me please...

    Please read this whole message before doing anything.
    This procedure is a diagnostic test. It’s unlikely to solve your problem. Don’t be disappointed when you find that nothing has changed after you complete it.
    The purpose of the test is to determine whether the problem is caused by third-party software that loads automatically at startup or login, by a peripheral device, by a font conflict, or by corruption of the file system or of certain system caches.
    Disconnect all wired peripherals except those needed for the test, and remove all aftermarket expansion cards, if applicable. Start up in safe mode and log in to the account with the problem. You must hold down the shift key twice: once when you turn on the computer, and again when you log in.
    Note: If FileVault is enabled, or if a firmware password is set, or if the startup volume is a Fusion Drive or a software RAID, you can’t do this. Ask for further instructions.
    Safe mode is much slower to start up and run than normal, with limited graphics performance, and some things won’t work at all, including sound output and Wi-Fi on certain models. The next normal startup may also be somewhat slow.
    The login screen appears even if you usually login automatically. You must know your login password in order to log in. If you’ve forgotten the password, you will need to reset it before you begin.
    Test while in safe mode. Same problem?
    After testing, restart as usual (not in safe mode) and verify that you still have the problem. Post the results of the test.

  • Can time capsule be used for wireless backup without serving as a router?

    can time capsule be set and used for wireless backup without serving as a router?

    Not if you want it to work.
    If you do want stand alone .. ie a TC sitting all on its lonesome with no internet connection.. then reset to factory and start over..
    The TC has to be in router mode so it can handle dhcp and addressing.
    Ignore all the problems.
    BUT then you can connect your computer to TC for backup
    OR
    you can connect to main wireless router for internet..
    You cannot do both.. at the same time.
    UNLESS you have ethernet connection.. to either main modem or TC.. if you have two networks and two different network clients, then you can do both at once but the setup is tricky.

  • Email Encryption Small Business Server 2008

    We have are running Small Business Server 2008 with Exchange 2007. Our firm needs to have a look at email encryption. This is a relatively new concept that we are dealing with, we are a bit confused with how it works.
    Can the email encryption be set up on the SBS server? Or do we need to get 3rd party software installed onto the server?
    The emails need to be encrypted that go out of the office, our clients have a variety of email programs that they use.

    Hi,
    By using the TLS protocol, you can help improve the security of SMTP communication in Exchange 2007. Please
    refer to following article and check if can help you.
    How to Use TLS Authentication in Exchange
    2007 to Send and Receive Messages with Third-Party E-Mail
    If any update, please feel free to let us know.
    Hope this helps.
    Best regards,
    Justin Gu

  • "Access Control - Do Not Inherit" Grayed out when setting up a backup on Server 2008 R2 when trying to use remote NAS

    I see one response here:
    http://social.technet.microsoft.com/Forums/en-US/c99eead0-e2fc-4c83-8cb2-959d03512667/server-2008-r2-dc-backup-greys-out-do-not-inherit-option-for-file-share-backup
    But it makes no sense to me. Running that command doesn't do anything.
    How do I make the box stop graying out when setting up a backup with the GUI interface? This should be really simple I would think and for some reason the backup utility is graying out the "Do Not Inherit" option so I can backup to the NAS
    device that has access control enabled in order to backup to the NAS.
    Thanks in advance!

    Hi,
    From this article, it mentioned that it is by design that we cannot choose "do not inherit" in backup schedule when backup target is a remote shared folder.
    Checklist: Schedule Automatic Backups
    http://technet.microsoft.com/en-us/library/cc732540.aspx
    If you use a remote shared folder, make sure that the folder is available, that you have write access to the folder, and that you are a member of the Administrators group or Backup Operators group on the computer hosting the folder. Each time you create
    a backup, it will overwrite the older backups so that you will only have one backup at a time.
    The backup will inherit the access control list (ACL) permissions of the folder.
    For the account it required, as mentioned above, it should be "a member of Admin group or Backup Operators group, and it should have write permission on target folder".
    Also map a network folder as a drive will not help show the mapped drive letter in backup destination. It is still a remote shared folder.
    TechNet Subscriber Support in forum |If you have any feedback on our support, please contact [email protected]

  • Isse with using Grouping Sets in SQL Server 2008 R2

    Hi,
    I created a query in SQL Server 2012 using grouping sets that works fine.  When I try to use the same query in SQL Server 2008 I get an error ("Inccorrect syntax near SETS").
    I researched using grouping sets in 2008 and didn't see any issue with my query.  What is different in grouping sets 2008 vs 2012?
    SELECT tl.ClientRegionCd as [Client Region Code] , tl.ClientRegionDesc as [Region Name], count(tl.CompleteICN) as [Trauma Letters Sent]
    from TORT_Trauma_Letters tl
    Where CONVERT(VARCHAR(26), tl.SecondNoticeSent, 23) between '2014-06-12' and '2014-06-12'
    GROUP BY GROUPING SETS((tl.ClientRegionCd, tl.ClientRegionDesc), ())
    Stacie

    Check this blog post as how to deal with date ranges
    http://sqlblog.com/blogs/aaron_bertrand/archive/2009/10/16/bad-habits-to-kick-mishandling-date-range-queries.aspx
    For your result you can simply achieve your result with UNION ALL, e.g.
    select Client, Region, Letters
    from myTable 
    UNION ALL
    select NULL, NULL, SUM(letters) as Letters
    For every expert, there is an equal and opposite expert. - Becker's Law
    My blog
    My TechNet articles

  • Why i can not use dbco to connect sql server 2008?

    Dear Experts,
        i use this mehtod to link sql server 2005 :MSSQL_SERVER=tcp:mysqlserver IP  MSSQL_DBNAME=SubConPayment,
    it is ok,when i use this method to link sql server 2008 with dbco,it is not ok,can you tell me why i can not link to sql server2008 in sap with dbco?
    looking forward to your reply.
    Best regards,
    Merry

    Hi Merry,
    Seems that you have to add the "provider" attribute to the connectionstring. Please have a look at the following link: [http://www.connectionstrings.com/sql-server-2008#p2]
    Regards,
    Ozcan.

  • Can I use Remote Desktop Connection (windows server 2008) even if no user is logged in?

    I'm configuring a Server, running Windows Server 2008, to be accessed remotely. Suppose no user is logged in in the server (if it was just turned
    on, for instance). Can I use the "Remote Desktop Connection" feature to log in remotely in this case? Or is it always necessary to have a user locally logged in, to remotely log in to one of the users available?

    If its a fresh installation, RDM might not work at first.
    1. You need to check firewall and allow Remote Desktop. To be specific, communication to port 3389 TCP
    2. Right click My Computer --> Properties --> Remote tab
    Enable Remote Desktop
    Allow connections to this computer
    Click users and grant the permissions for the users. By default, Administrators do have the permission. An also, the users who are members of the 'Remote Desktop Users' security group also have the permission

  • Indexing .cfm files using Indexing Service on windows server 2008 and IIS 7.0

    Hi All,
    Anyone knows why .cfm files would not get indexed by Indexing Service on windows server 2008 and IIS 7.0.  This is a coldfusion website using Indexing Service for site search.  There are a lot of cfm pages indexed as unknown files.   Any clues on how this can be fixed?
    Thanks!

    You might try editing your registry so that *.cfm, *.cfc, and other ColdFusion related files are treated as text files by the Windows search feature.  See link below.
    http://www.dougknox.com/xp/tips/xp_bad_search.htm
    Disclaimer: I am not a Windows system admin.  You might try posting this question to a Windows specific forum.

  • No valid driver for officejet 6700 premium on Windows Server 2008 - 32bit

    Even though there is a download file available on the support site it is not compatible with WS2K8
    Does anyone know of a work-around for this ?
    I can not change the OS, as was suggested by HP tech support.

    Hey typesetter773,
    The driver for Windows Server 2008 W32 is available on the website as you mentioned.  I will provide a link for those looking for this driver.
    http://h10025.www1.hp.com/ewfrf/wc/softwareDownloadIndex?softwareitem=mp-109483-2&cc=us&dlc=en&lc=en...
    If you are getting a message about compatibility, then it is possible you are running Windows Server 2008 R2?  These are different versions of the WS2K8 OS and the driver will not work with R2.
    Jason
    -------------How do I give Kudos? | How do I mark a post as Solved? --------------------------------------------------------
    I am not an HP employee.

  • Creating New db(with new name) with the old db backup sql server 2008

    Friends..
    version: Sql Server 2008
    I have a database in a name college1 (more than 200 tables and view etc...)
    i want to create a new db with all the structures including the data of the above db college1 with a new name college2
    so...i finished the step 1 successfully.. what are the other steps i have to do...like validating the invalid objects. etc....
    Step 1:
    RESTORE DATABASE college2 FROM DISK = 'D:\DailyDBbackup\college1.bak'
      WITH replace,
      move 'college2 ' TO 'D:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\DATA\college2 .mdf',
      move  'college2 _log' TO 'D:\Program Files\Microsoft SQL Server\MSSQL10.MSSQLSERVER\MSSQL\DATA\college2 _log.ldf';
    step 2: ?
    Step 3: ?
    thanks...

    but...when i type
    use college1
    select * from (it will display all tables under the above db)
    but when i do..
    use college2
    select * from (only system tables are displaying..)
    Did restore completed successfully ? If yes Expand database , can you see tables in the new database you restored ?. Sometimes when you type incorrect word which does not matches anything you wont get help from intellicense you should not be worried about this
    if tables are there in new database college 2
    Please mark this reply as answer if it solved your issue or vote as helpful if it helped so that other forum members can benefit from it
    My Technet Wiki Article
    MVP

  • Driver Security Certificate Expiration Issue on Windows Server 2008

    Hi,
    We want to install Oracle Database 10g Release 2 RAC (10.2.0.4.0) Enterprise for Microsoft Windows Server 2008 x64. When installing Oracle Cluster Ready Services on Windows Server 2008, the prerequisite check fails with the following message:
    "Security certificates for OCFS and Orafence drivers on Windows Server 2008 have expired"
    Can somebody please point a download location from Metalink from where we can download the latest drivers?

    Hi Satish,
    thank you for your reply. I also found this bug on metalink and did as they wrote there (change the date before 2009). It worked, pre requirments assistant is now ok, but after setting private/public interfaces section it fails with error message:
    "Unable to collect and verify hardware information on all nodes" ...
    This is the same error I got in 11g as well, because I already had a post yesterday about this bug in this section :(
    The strange thing is that now cluster verification passes the system architecture check for (10.2.0.4), but it fails during the installation of CRS.
    We are already have an SR with Metalink, but unfortunately they are not much of a help :(
    D:\10204_vista_w2k8_x64_production_crs\clusterware\cluvfy>runcluvfy stage -pre crsinst
    -n rac1,rac2 -verbose
    Performing pre-checks for cluster services setup
    Checking node reachability...
    Check: Node reachability from node "RAC1"
    Destination Node Reachable?
    rac2 yes
    rac1 yes
    Result: Node reachability check passed from node "RAC1".
    Checking user equivalence...
    Check: User equivalence for user "Administrator"
    Node Name Comment
    rac2 passed
    rac1 passed
    Result: User equivalence check passed for user "Administrator".
    Checking administrative privileges...
    Checking node connectivity...
    Interface information for node "rac2"
    Interface Name IP Address Subnet
    PublicLAN 172.17.10.23 172.17.10.0
    PublicLAN 172.17.10.201 172.17.10.0
    PrivateLAN 192.168.10.21 192.168.10.0
    Interface information for node "rac1"
    Interface Name IP Address Subnet
    PublicLAN 172.17.10.22 172.17.10.0
    PublicLAN 172.17.10.200 172.17.10.0
    PrivateLAN 192.168.10.11 192.168.10.0
    Check: Node connectivity of subnet "172.17.10.0"
    Source Destination Connected?
    rac2:PublicLAN rac2:PublicLAN yes
    rac2:PublicLAN rac1:PublicLAN yes
    rac2:PublicLAN rac1:PublicLAN yes
    rac2:PublicLAN rac1:PublicLAN yes
    rac2:PublicLAN rac1:PublicLAN yes
    rac1:PublicLAN rac1:PublicLAN yes
    Result: Node connectivity check passed for subnet "172.17.10.0" with node(s) rac2,rac1.
    Check: Node connectivity of subnet "192.168.10.0"
    Source Destination Connected?
    rac2:PrivateLAN rac1:PrivateLAN yes
    Result: Node connectivity check passed for subnet "192.168.10.0" with node(s) rac2,rac1.
    Suitable interfaces for the private interconnect on subnet "172.17.10.0":
    rac2 PublicLAN:172.17.10.23 PublicLAN:172.17.10.201
    rac1 PublicLAN:172.17.10.22 PublicLAN:172.17.10.200
    Suitable interfaces for the private interconnect on subnet "192.168.10.0":
    rac2 PrivateLAN:192.168.10.21
    rac1 PrivateLAN:192.168.10.11
    ERROR:
    Could not find a suitable set of interfaces for VIPs.
    Result: Node connectivity check failed.
    Checking system requirements for 'crs'...
    Check: Operating system version
    Node Name Available Required Comment
    rac2 Windows Server 2008 Windows Server 2008 passed
    rac1 Windows Server 2008 Windows Server 2008 passed
    Result: Operating system version check passed.
    Check: Total memory
    Node Name Available Required Comment
    rac2 8GB (8387020KB) 1GB (1048576KB) passed
    rac1 8GB (8387020KB) 1GB (1048576KB) passed
    Result: Total memory check passed.
    Check: Swap space
    Node Name Available Required Comment
    rac2 16.05GB (16826288KB) 1GB (1048576KB) passed
    rac1 16.05GB (16826288KB) 1GB (1048576KB) passed
    Result: Swap space check passed.
    Check: System architecture
    Node Name Available Required Comment
    rac2 64-bit 64-bit passed
    rac1 64-bit 64-bit passed
    Result: System architecture check passed.
    Check: Free disk space in "C:\" dir
    Node Name Available Required Comment
    rac2 20.21GB (21190416KB) 400MB (409600KB) passed
    rac1 19.98GB (20948624KB) 400MB (409600KB) passed
    Result: Free disk space check passed.
    System requirement passed for 'crs'
    Pre-check for cluster services setup was unsuccessful on all the nodes.

  • How can I speed up logins using MacBooks to a Windows Server 2008 environment.  Logging onto the network is extremely slow.  We are using a wireless connection to the network in classrooms

    I work in an Education environment with Windows Server 2008.  I am trying to join our Macbooks to Active Directory.  They are joined but the login is extremely slow.  I read that this is because of a possible problem with an OS update.

    Check the ethernet link speed when connected directly to the TC.. if you are plugged into the modem direct.. and comparing that with wireless on the TC we have no way of knowing where the issue is.
    There is some issue related by someone when the TC was bridged.
    It is extremely hard to impossible to know what is causing wireless slow down.. needs lots more info.
    What is the link speed?
    Set manually and try different channels.
    The series 1 cannot do 2.4ghz and 5ghz simultaneously but test on 5ghz and see what the speed is like. You will need to be in the same room as the TC.

  • Hard Drive Encryption & Backup

    What product performs encryption for Windows 7 (NOT the Server OS), and will it work on external (both USB 2 AND eSATA) drives as well as internal ones?  Also will Windows 7 Backup retain the encryption when backing up files AND system image
    to an external eSATA drive?
    Creacon

    Hi,
    In addition to the previous replies, I also would like to share this link with you.
    Get Started with the Encrypting File System in Windows 7
    http://technet.microsoft.com/en-us/windows/how-do-i-get-started-with-the-encrypting-file-system-in-windows-7.aspx
    Yolanda
    TechNet Community Support

  • Incremental backup in server 2008 server r2 edition

    i am unable to take incremantal backup in my machine ,plz guide me to take incrental backup

    Hi Only for u
    Installing NTBackup on Windows 7 / 2008 R2
    If wanting the original NTBackup on Win7 / Win2k8 R2 then it can be done by creating a new folder on Windows 7 ex. C:\Program Files\NTBackup and copy the following files from Windows XP to the
    folder (or extract them from the install file nt5backup.cab):
    C:Windows\System32\Ntbackup.exe
    C:Windows\System32\Ntmsapi.dll
    C:Windows\System32\Vssapi.dll
    C:Windows\Help\Ntbackup.chm
    C:Windows\Help\Ntbackup.hlp
    Note when starting NTBackup then it will complain about "Removable Storage" not running, and this warning can be safely be ignored:
    The Backup Utility cannot connect to the Removable Storage service. This service is required for use of tape drives and
    other backup devices. Please exit and start the Removable Storage service using the System Services function of the management console.

Maybe you are looking for