Unsolved
This post is more than 5 years old
2 Posts
0
2069
December 20th, 2010 12:00
Windows Client not restoring acl permissions
I am using Avamar virtual edition.
Scenario:
I add a Windows client to avamar and only backup certain folders using a dataset on a schedule (backup 1). A file has Users-full control permissions. I delete that file, do a restore using the management console, the correct users-full control permissions are there.
Now, I change user NTFS permissions to read only for that file. Do a on demand backup now (backup 2), delete the file after the backup is complete, and restore the file using the new backup. The file reverts back to the Users-full control permissions and not the read only NTFS permissions that I just applied before the last backup.
Problem:
Why does the backup not restore the read only NTFS permissions to that file on the windows client? Instead it restores the NTFS permissions to backup 1(which were full control on that file) instead of backup 2 read only.
Am I missing a option to restore the ACL to the file somewhere?
tydavis
2 Posts
0
December 21st, 2010 08:00
I found the answer to my problem.
First the registry key NtfsDisableLastAccessUpdate on the windows client was set to 1 which by default it should be 0. I checked multiple servers and that key is set to 1 on all of them also, so I am not sure why that key is not the default value Microsoft states unless some third party software is changing it.
Second under the dataset in avamar, you have to go to options, clicked show advanced, and check use last access time to detect ACL-only changes.
Now when I change NTFS permissions only on the file, the last access timestamp is updated (since it is enabled now) and the backup job is set to look for a different last access time stamp changed from the last backup so it considers the file changed and backs it up again with the new NTFS permissions.
I hope this helps someone out.
Thanks